AU-2 Event Logging

GPTKB entity

Statements (20)
Predicate Object
gptkbp:instanceOf NIST SP 800-53 Control
gptkbp:appliesTo Federal information systems
gptkbp:controls AU-2
gptkbp:documentedIn gptkb:NIST_Special_Publication_800-53
gptkbp:family Audit and Accountability
https://www.w3.org/2000/01/rdf-schema#label AU-2 Event Logging
gptkbp:improves AU-2(1) Reviews and Updates
AU-2(2) Privileged Functions
AU-2(4) Unauthorized Disclosures of Information
AU-2(5) System-Level Audit Logging
AU-2(3) Reviews and Updates - Organization Defined Frequency
gptkbp:partOf gptkb:NIST_SP_800-53_Revision_5
gptkbp:purpose To ensure that organizations determine, document, implement, and review the types of events that need to be logged.
gptkbp:relatedTo gptkb:AU-6_Audit_Review,_Analysis,_and_Reporting
gptkb:AU-8_Time_Stamps
gptkbp:requires Organizations to review and update logged events periodically
Organizations to identify events for logging
Organizations to coordinate event logging with risk management
gptkbp:bfsParent gptkb:Audit_and_Accountability_(AU)
gptkbp:bfsLayer 7