| TIP: NIST SP 800-53 r4 - Security Control Family: Audit and Accountability

NIST SP 800-53 r4 - Security Control Family: Audit and Accountability - Supplemental Controls, v4

Profile of requirements corresponding to all supplemental security controls in NIST Special Publication 800-53, r4, under the control family of Audit and Accountability.

Identifier

https://artifacts.trustmarkinitiative.org/lib/tips/nist-sp-800-53-r4---security-control-family_-audit-and-accountability---supplemental-controls/4/

Publication Date

2021-04-26

Issuing Organization

TMI (https://trustmarkinitiative.org/) View Contact

No Responder

help@trustmarkinitiative.org

555-555-5555

No Mailing Address

Keywords

800-53, Accountability, Audit, NIST, Security, Supplemental

Legal Notice

This document and the information contained herein is provided on an "AS IS" basis, and the Georgia Tech Research Institute disclaims all warranties, express or implied, including but not limited to any warranty that the use of the information herein will not infringe any rights or any implied warranties or merchantability or fitness for a particular purpose. In addition, the Georgia Tech Research Institute disclaims legal liability for any loss incurred as a result of the use or reliance on the document or the information contained herein.

Tree View
Details View

Trust Expression:

TIP_NISTSP80053r4SecurityControlAU41TransfertoAlternateStorage and TIP_NISTSP80053r4SecurityControlAU53ConfigurableTrafficVolumeThresholds and TIP_NISTSP80053r4SecurityControlAU54ShutdownonFailure and TIP_NISTSP80053r4SecurityControlAU64CentralReviewandAnalysis and TIP_NISTSP80053r4SecurityControlAU67PermittedActions and TIP_NISTSP80053r4SecurityControlAU68FullTextAnalysisofPrivilegedCommands and TIP_NISTSP80053r4SecurityControlAU69CorrelationwithInformationfromNontechnicalSources and TIP_NISTSP80053r4SecurityControlAU610AuditLevelAdjustment and TIP_NISTSP80053r4SecurityControlAU72AutomaticSortandSearch and TIP_NISTSP80053r4SecurityControlAU82SecondaryAuthoritativeTimeSource and TIP_NISTSP80053r4SecurityControlAU91HardwareWriteOnceMedia and TIP_NISTSP80053r4SecurityControlAU95DualAuthorization and TIP_NISTSP80053r4SecurityControlAU96ReadOnlyAccess and TIP_NISTSP80053r4SecurityControlAU101AssociationofIdentities and TIP_NISTSP80053r4SecurityControlAU102ValidateBindingofInformationProducerIdentity and TIP_NISTSP80053r4SecurityControlAU103ChainofCustody and TIP_NISTSP80053r4SecurityControlAU104ValidateBindingofInformationReviewerIdentity and TIP_NISTSP80053r4SecurityControlAU111LongTermRetrievalCapability and TIP_NISTSP80053r4SecurityControlAU122StandardizedFormats and TIP_NISTSP80053r4SecurityControlAU13MonitoringforInformationDisclosure and TIP_NISTSP80053r4SecurityControlAU131UseofAutomatedTools and TIP_NISTSP80053r4SecurityControlAU132ReviewofMonitoredSites and TIP_NISTSP80053r4SecurityControlAU14SessionAudit and TIP_NISTSP80053r4SecurityControlAU141SystemStartUp and TIP_NISTSP80053r4SecurityControlAU142CaptureRecordandLogContent and TIP_NISTSP80053r4SecurityControlAU143RemoteViewingListening and TIP_NISTSP80053r4SecurityControlAU15AlternateAuditCapability and TIP_NISTSP80053r4SecurityControlAU16CrossOrganizationalAuditing and TIP_NISTSP80053r4SecurityControlAU161IdentityPreservation and TIP_NISTSP80053r4SecurityControlAU162SharingofAuditInformation

References (30)

TIP NIST SP 800-53 r4 Security Control AU-4 (1): Transfer to Alternate Storage, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-4 (1): Transfer to Alternate Storage.
ID	TIP_NISTSP80053r4SecurityControlAU41TransfertoAlternateStorage

TIP NIST SP 800-53 r4 Security Control AU-5 (3): Configurable Traffic Volume Thresholds, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-5 (3): Configurable Traffic Volume Thresholds.
ID	TIP_NISTSP80053r4SecurityControlAU53ConfigurableTrafficVolumeThresholds

TIP NIST SP 800-53 r4 Security Control AU-5 (4): Shutdown on Failure, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-5 (4): Shutdown on Failure.
ID	TIP_NISTSP80053r4SecurityControlAU54ShutdownonFailure

TIP NIST SP 800-53 r4 Security Control AU-6 (4): Central Review and Analysis, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-6 (4): Central Review and Analysis.
ID	TIP_NISTSP80053r4SecurityControlAU64CentralReviewandAnalysis

TIP NIST SP 800-53 r4 Security Control AU-6 (7): Permitted Actions, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-6 (7): Permitted Actions.
ID	TIP_NISTSP80053r4SecurityControlAU67PermittedActions

TIP NIST SP 800-53 r4 Security Control AU-6 (8): Full Text Analysis of Privileged Commands, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-6 (8): Full Text Analysis of Privileged Commands.
ID	TIP_NISTSP80053r4SecurityControlAU68FullTextAnalysisofPrivilegedCommands

TIP NIST SP 800-53 r4 Security Control AU-6 (9): Correlation with Information from Nontechnical Sources, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-6 (9): Correlation with Information from Nontechnical Sources.
ID	TIP_NISTSP80053r4SecurityControlAU69CorrelationwithInformationfromNontechnicalSources

TIP NIST SP 800-53 r4 Security Control AU-6 (10): Audit Level Adjustment, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-6 (10): Audit Level Adjustment.
ID	TIP_NISTSP80053r4SecurityControlAU610AuditLevelAdjustment

TIP NIST SP 800-53 r4 Security Control AU-7 (2): Automatic Sort and Search, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-7 (2): Automatic Sort and Search.
ID	TIP_NISTSP80053r4SecurityControlAU72AutomaticSortandSearch

TIP NIST SP 800-53 r4 Security Control AU-8 (2): Secondary Authoritative Time Source, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-8 (2): Secondary Authoritative Time Source.
ID	TIP_NISTSP80053r4SecurityControlAU82SecondaryAuthoritativeTimeSource

TIP NIST SP 800-53 r4 Security Control AU-9 (1): Hardware Write-Once Media, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-9 (1): Hardware Write-Once Media.
ID	TIP_NISTSP80053r4SecurityControlAU91HardwareWriteOnceMedia

TIP NIST SP 800-53 r4 Security Control AU-9 (5): Dual Authorization, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-9 (5): Dual Authorization.
ID	TIP_NISTSP80053r4SecurityControlAU95DualAuthorization

TIP NIST SP 800-53 r4 Security Control AU-9 (6): Read Only Access, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-9 (6): Read Only Access.
ID	TIP_NISTSP80053r4SecurityControlAU96ReadOnlyAccess

TIP NIST SP 800-53 r4 Security Control AU-10 (1): Association of Identities, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-10 (1): Association of Identities.
ID	TIP_NISTSP80053r4SecurityControlAU101AssociationofIdentities

TIP NIST SP 800-53 r4 Security Control AU-10 (2): Validate Binding of Information Producer Identity, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-10 (2): Validate Binding of Information Producer Identity.
ID	TIP_NISTSP80053r4SecurityControlAU102ValidateBindingofInformationProducerIdentity

TIP NIST SP 800-53 r4 Security Control AU-10 (3): Chain of Custody, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-10 (3): Chain of Custody.
ID	TIP_NISTSP80053r4SecurityControlAU103ChainofCustody

TIP NIST SP 800-53 r4 Security Control AU-10 (4): Validate Binding of Information Reviewer Identity, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-10 (4): Validate Binding of Information Reviewer Identity.
ID	TIP_NISTSP80053r4SecurityControlAU104ValidateBindingofInformationReviewerIdentity

TIP NIST SP 800-53 r4 Security Control AU-11 (1): Long-Term Retrieval Capability, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-11 (1): Long-Term Retrieval Capability.
ID	TIP_NISTSP80053r4SecurityControlAU111LongTermRetrievalCapability

TIP NIST SP 800-53 r4 Security Control AU-12 (2): Standardized Formats, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-12 (2): Standardized Formats.
ID	TIP_NISTSP80053r4SecurityControlAU122StandardizedFormats

TIP NIST SP 800-53 r4 Security Control AU-13: Monitoring for Information Disclosure, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-13: Monitoring for Information Disclosure.
ID	TIP_NISTSP80053r4SecurityControlAU13MonitoringforInformationDisclosure

TIP NIST SP 800-53 r4 Security Control AU-13 (1): Use of Automated Tools, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-13 (1): Use of Automated Tools.
ID	TIP_NISTSP80053r4SecurityControlAU131UseofAutomatedTools

TIP NIST SP 800-53 r4 Security Control AU-13 (2): Review of Monitored Sites, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-13 (2): Review of Monitored Sites.
ID	TIP_NISTSP80053r4SecurityControlAU132ReviewofMonitoredSites

TIP NIST SP 800-53 r4 Security Control AU-14: Session Audit, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-14: Session Audit.
ID	TIP_NISTSP80053r4SecurityControlAU14SessionAudit

TIP NIST SP 800-53 r4 Security Control AU-14 (1): System Start-Up, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-14 (1): System Start-Up.
ID	TIP_NISTSP80053r4SecurityControlAU141SystemStartUp

TIP NIST SP 800-53 r4 Security Control AU-14 (2): Capture/Record and Log Content, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-14 (2): Capture/Record and Log Content.
ID	TIP_NISTSP80053r4SecurityControlAU142CaptureRecordandLogContent

TIP NIST SP 800-53 r4 Security Control AU-14 (3): Remote Viewing / Listening, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-14 (3): Remote Viewing / Listening.
ID	TIP_NISTSP80053r4SecurityControlAU143RemoteViewingListening

TIP NIST SP 800-53 r4 Security Control AU-15: Alternate Audit Capability, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-15: Alternate Audit Capability.
ID	TIP_NISTSP80053r4SecurityControlAU15AlternateAuditCapability

TIP NIST SP 800-53 r4 Security Control AU-16: Cross-Organizational Auditing, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-16: Cross-Organizational Auditing.
ID	TIP_NISTSP80053r4SecurityControlAU16CrossOrganizationalAuditing

TIP NIST SP 800-53 r4 Security Control AU-16 (1): Identity Preservation, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-16 (1): Identity Preservation.
ID	TIP_NISTSP80053r4SecurityControlAU161IdentityPreservation

TIP NIST SP 800-53 r4 Security Control AU-16 (2): Sharing of Audit Information, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control AU-16 (2): Sharing of Audit Information.
ID	TIP_NISTSP80053r4SecurityControlAU162SharingofAuditInformation

Sources (1)

SP800-53R4	NIST Special Publication 800-53 Revision 4, Security and Privacy Controls for Federal Information Systems and Organizations, National Institute of Standards and Technology, April 2013 (Includes updates as of 01-15-2014). Available at http://dx.doi.org/10.6028/NIST.SP.800-53r4.

Also available as XML or JSON