{
  "$TMF_VERSION": "1.4",
  "PublicationDateTime": "2021-04-26T00:00:00.000Z",
  "Description": "Profile of requirements corresponding to all LOW impact security controls in NIST Special Publication 800-53, r4, under the control family of Audit and Accountability.",
  "Keywords": [
    "800-53",
    "Accountability",
    "Audit",
    "NIST",
    "Security",
    "Low"
  ],
  "Issuer": {
    "Identifier": "https://trustmarkinitiative.org/",
    "PrimaryContact": {
      "Email": "help@trustmarkinitiative.org",
      "Telephone": "555-555-5555",
      "Kind": "PRIMARY",
      "WebsiteURL": "https://trustmarkinitiative.org/",
      "Responder": ""
    },
    "Name": "TMI"
  },
  "Sources": [{
    "Identifier": "SP800-53R4",
    "Reference": "NIST Special Publication 800-53 Revision 4, Security and Privacy Controls for Federal Information Systems and Organizations, National Institute of Standards and Technology, April 2013 (Includes updates as of 01-15-2014). Available at <a href=\"http://dx.doi.org/10.6028/NIST.SP.800-53r4\">http://dx.doi.org/10.6028/NIST.SP.800-53r4<\/a>.",
    "$id": "source-2112165102"
  }],
  "Name": "NIST SP 800-53 r4 - Security Control Family: Audit and Accountability - Controls for LOW Impact Systems",
  "TrustExpression": "TIP_NISTSP80053r4SecurityControlAU1AuditandAccountabilityPolicyandProcedures and TIP_NISTSP80053r4SecurityControlAU2AuditEvents and TIP_NISTSP80053r4SecurityControlAU3ContentofAuditRecords and TIP_NISTSP80053r4SecurityControlAU4AuditStorageCapacity and TIP_NISTSP80053r4SecurityControlAU5ResponsetoAuditProcessingFailures and TIP_NISTSP80053r4SecurityControlAU6AuditReviewAnalysisandReporting and TIP_NISTSP80053r4SecurityControlAU8TimeStamps and TIP_NISTSP80053r4SecurityControlAU9ProtectionofAuditInformation and TIP_NISTSP80053r4SecurityControlAU11AuditRecordRetention and TIP_NISTSP80053r4SecurityControlAU12AuditGeneration",
  "Identifier": "https://artifacts.trustmarkinitiative.org/lib/tips/nist-sp-800-53-r4---security-control-family_-audit-and-accountability---controls-for-low-impact-systems/4/",
  "Version": "4",
  "References": {"TrustInteroperabilityProfileReferences": [
    {
      "Identifier": "https://artifacts.trustmarkinitiative.org/lib/tips/nist-sp-800-53-r4-security-control-au-1_-audit-and-accountability-policy-and-procedures/4/",
      "Description": "Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-1: Audit and Accountability Policy and Procedures. Applicable to LOW impact, MODERATE impact, and HIGH impact systems.",
      "Number": 1,
      "Version": "4",
      "$Type": "TrustInteroperabilityProfileReference",
      "Name": "NIST SP 800-53 r4 Security Control AU-1: Audit and Accountability Policy and Procedures",
      "$id": "TIP_NISTSP80053r4SecurityControlAU1AuditandAccountabilityPolicyandProcedures"
    },
    {
      "Identifier": "https://artifacts.trustmarkinitiative.org/lib/tips/nist-sp-800-53-r4-security-control-au-2_-audit-events/4/",
      "Description": "Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-2: Audit Events. Applicable to LOW impact, MODERATE impact, and HIGH impact systems.",
      "Number": 2,
      "Version": "4",
      "$Type": "TrustInteroperabilityProfileReference",
      "Name": "NIST SP 800-53 r4 Security Control AU-2: Audit Events",
      "$id": "TIP_NISTSP80053r4SecurityControlAU2AuditEvents"
    },
    {
      "Identifier": "https://artifacts.trustmarkinitiative.org/lib/tips/nist-sp-800-53-r4-security-control-au-3_-content-of-audit-records/4/",
      "Description": "Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-3: Content of Audit Records. Applicable to LOW impact, MODERATE impact, and HIGH impact systems.",
      "Number": 3,
      "Version": "4",
      "$Type": "TrustInteroperabilityProfileReference",
      "Name": "NIST SP 800-53 r4 Security Control AU-3: Content of Audit Records",
      "$id": "TIP_NISTSP80053r4SecurityControlAU3ContentofAuditRecords"
    },
    {
      "Identifier": "https://artifacts.trustmarkinitiative.org/lib/tips/nist-sp-800-53-r4-security-control-au-4_-audit-storage-capacity/4/",
      "Description": "Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-4: Audit Storage Capacity. Applicable to LOW impact, MODERATE impact, and HIGH impact systems.",
      "Number": 4,
      "Version": "4",
      "$Type": "TrustInteroperabilityProfileReference",
      "Name": "NIST SP 800-53 r4 Security Control AU-4: Audit Storage Capacity",
      "$id": "TIP_NISTSP80053r4SecurityControlAU4AuditStorageCapacity"
    },
    {
      "Identifier": "https://artifacts.trustmarkinitiative.org/lib/tips/nist-sp-800-53-r4-security-control-au-5_-response-to-audit-processing-failures/4/",
      "Description": "Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-5: Response to Audit Processing Failures. Applicable to LOW impact, MODERATE impact, and HIGH impact systems.",
      "Number": 5,
      "Version": "4",
      "$Type": "TrustInteroperabilityProfileReference",
      "Name": "NIST SP 800-53 r4 Security Control AU-5: Response to Audit Processing Failures",
      "$id": "TIP_NISTSP80053r4SecurityControlAU5ResponsetoAuditProcessingFailures"
    },
    {
      "Identifier": "https://artifacts.trustmarkinitiative.org/lib/tips/nist-sp-800-53-r4-security-control-au-6_-audit-review_-analysis_-and-reporting/4/",
      "Description": "Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-6: Audit Review, Analysis, and Reporting. Applicable to LOW impact, MODERATE impact, and HIGH impact systems.",
      "Number": 6,
      "Version": "4",
      "$Type": "TrustInteroperabilityProfileReference",
      "Name": "NIST SP 800-53 r4 Security Control AU-6: Audit Review, Analysis, and Reporting",
      "$id": "TIP_NISTSP80053r4SecurityControlAU6AuditReviewAnalysisandReporting"
    },
    {
      "Identifier": "https://artifacts.trustmarkinitiative.org/lib/tips/nist-sp-800-53-r4-security-control-au-8_-time-stamps/4/",
      "Description": "Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-8: Time Stamps. Applicable to LOW impact, MODERATE impact, and HIGH impact systems.",
      "Number": 7,
      "Version": "4",
      "$Type": "TrustInteroperabilityProfileReference",
      "Name": "NIST SP 800-53 r4 Security Control AU-8: Time Stamps",
      "$id": "TIP_NISTSP80053r4SecurityControlAU8TimeStamps"
    },
    {
      "Identifier": "https://artifacts.trustmarkinitiative.org/lib/tips/nist-sp-800-53-r4-security-control-au-9_-protection-of-audit-information/4/",
      "Description": "Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-9: Protection of Audit Information. Applicable to LOW impact, MODERATE impact, and HIGH impact systems.",
      "Number": 8,
      "Version": "4",
      "$Type": "TrustInteroperabilityProfileReference",
      "Name": "NIST SP 800-53 r4 Security Control AU-9: Protection of Audit Information",
      "$id": "TIP_NISTSP80053r4SecurityControlAU9ProtectionofAuditInformation"
    },
    {
      "Identifier": "https://artifacts.trustmarkinitiative.org/lib/tips/nist-sp-800-53-r4-security-control-au-11_-audit-record-retention/4/",
      "Description": "Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-11: Audit Record Retention. Applicable to LOW impact, MODERATE impact, and HIGH impact systems.",
      "Number": 9,
      "Version": "4",
      "$Type": "TrustInteroperabilityProfileReference",
      "Name": "NIST SP 800-53 r4 Security Control AU-11: Audit Record Retention",
      "$id": "TIP_NISTSP80053r4SecurityControlAU11AuditRecordRetention"
    },
    {
      "Identifier": "https://artifacts.trustmarkinitiative.org/lib/tips/nist-sp-800-53-r4-security-control-au-12_-audit-generation/4/",
      "Description": "Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-12: Audit Generation. Applicable to LOW impact, MODERATE impact, and HIGH impact systems.",
      "Number": 10,
      "Version": "4",
      "$Type": "TrustInteroperabilityProfileReference",
      "Name": "NIST SP 800-53 r4 Security Control AU-12: Audit Generation",
      "$id": "TIP_NISTSP80053r4SecurityControlAU12AuditGeneration"
    }
  ]},
  "Primary": "false",
  "LegalNotice": "This document and the information contained herein is provided on an \"AS IS\" basis, and the Georgia Tech Research Institute disclaims all warranties, express or implied, including but not limited to any warranty that the use of the information herein will not infringe any rights or any implied warranties or merchantability or fitness for a particular purpose. In addition, the Georgia Tech Research Institute disclaims legal liability for any loss incurred as a result of the use or reliance on the document or the information contained herein.",
  "$Type": "TrustInteroperabilityProfile"
}