Overview
  1. 03.01: Access Control
  2. 03.02: Awareness and Training
  3. 03.03: Audit and Accountability
  4. 03.04: Configuration Management
  5. 03.05: Identification and Authentication
  6. 03.06: Incident Response
  7. 03.07: Maintenance
  8. 03.08: Media Protection
  9. 03.09: Personnel Security
  10. 03.10: Physical Protection
  11. 03.11: Risk Assessment
  12. 03.12: Security Assessment
  13. 03.13: System and Communications Protection
  14. 03.14: System and Information Integrity

Security Requirements for 03.03.08 Audit Protection

Audit information includes all information (e.g., audit records, audit log settings, and audit reports) needed to successfully audit system activity. Audit logging tools are those programs and devices used to conduct audit and logging activities. This requirement focuses on the technical protection of audit information and limits the ability to access and execute audit logging tools to authorized individuals. Physical protection of audit information is addressed by media protection and physical and environmental protection requirements.

Evidence

  1. 03.03.08.a

    Audit information is protected from unauthorized access

  1. 03.03.08.b

    Audit information is protected from unauthorized modification

  1. 03.03.08.c

    Audit information is protected from unauthorized deletion

  1. 03.03.08.d

    Audit logging tools are protected from unauthorized access

  1. 03.03.08.e

    Audit logging tools are protected from unauthorized modification

  1. 03.03.08.f

    Audit logging tools are protected from unauthorized deletion