AU-9 (2)

Audit and AccountabilityRev 5system

Protection of Audit Information

Baselines:High

Control Statement

Store audit records [Assignment: frequency] in a repository that is part of a physically different system or system component than the system or component being audited.

Supplemental Guidance

Storing audit records in a repository separate from the audited system or system component helps to ensure that a compromise of the system being audited does not also result in a compromise of the audit records. Storing audit records on separate physical systems or components also preserves the confidentiality and integrity of audit records and facilitates the management of audit records as an organization-wide activity. Storing audit records on separate systems or components applies to initial generation as well as backup or long-term storage of audit records.

Related Controls (2)

AU-4 AU-5

CCI Identifiers (3)

CCI-001575The organization defines the system or system component for storing audit records that is a different system or system component than the system or component being audited.CCI-001348Store audit records on an organization-defined frequency in a repository that is part of a physically different system or system component than the system or component being audited.CCI-001349Defines a frequency for storing audit records in a repository that is part of a physically different system or system component than the system or component being audited.

Linked STIG Checks (71)

Across 67 STIGs. Click to expand.