AU-9(5)
AU-9(5): Dual Authorization
The organization enforces dual authorization for [one or more of movement/deletion] of [organization-defined audit information].
Supplemental
Organizations may choose different selection options for different types of audit information. Dual authorization mechanisms require the approval of two authorized individuals in order to execute. Dual authorization may also be known as two-person control.
CIA Levels | |
---|---|
Confidentiality | unknown |
Integrity | high |
Availability | unknown |
Overlays |
---|
None |
CSF Categories |
---|
None |