STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← All Controls

AU-10

Audit and AccountabilityRev 5system

Non-Repudiation

Baselines:High

Control Statement

Provide irrefutable evidence that an individual (or process acting on behalf of an individual) has performed [Assignment: actions].

Supplemental Guidance

Types of individual actions covered by non-repudiation include creating information, sending and receiving messages, and approving information. Non-repudiation protects against claims by authors of not having authored certain documents, senders of not having transmitted messages, receivers of not having received messages, and signatories of not having signed documents. Non-repudiation services can be used to determine if information originated from an individual or if an individual took specific actions (e.g., sending an email, signing a contract, approving a procurement request, or receiving specific information). Organizations obtain non-repudiation services by employing various techniques or mechanisms, including digital signatures and digital message receipts.

Related Controls (9)

AU-9PM-12SA-8SC-8SC-12SC-13SC-16SC-17SC-23

CCI Identifiers (2)

CCI-000166Provide irrefutable evidence that an individual (or process acting on behalf of an individual) falsely denying having performed organization-defined actions to be covered by non-repudiation.CCI-001899Defines the actions to be covered by non-repudiation.

Linked STIG Checks (123)

Across 98 STIGs. Click to expand.