IVS-01: Audit Logging / Intrusion Detection
Control Family:
PF v1.0 References:
Threats Addressed:
Control Statement
Higher levels of assurance are required for protection, retention, and lifecycle management of audit logs, adhering to applicable legal, statutory or regulatory compliance obligations and providing unique user access accountability to detect potentially suspicious network behaviors and/or file integrity anomalies, and to support forensic investigative capabilities in the event of a security breach.