SI-7(8)
SI-7(8): Auditing Capability for Significant Events
The information system, upon detection of a potential integrity violation, provides the capability to audit the event and initiates the following actions: [one or more of generates an audit record/alerts current user/alerts {{ insert: param, si-7.8_prm_2 }} / {{ insert: param, si-7.8_prm_3 }} ].
Supplemental
Organizations select response actions based on types of software, specific software, or information for which there are potential integrity violations.
CIA Levels | |
---|---|
Confidentiality | unknown |
Integrity | high |
Availability | unknown |
Overlays |
---|
None |
CSF Categories |
---|
None |