AU-5(1): Audit Storage Capacity

CSF v1.1 References:

Threats Addressed:


  • High

Next Version:

Control Statement

The information system provides a warning to [Assignment: organization-defined personnel, roles, and/or locations] within [Assignment: organization-defined time period] when allocated audit record storage volume reaches [Assignment: organization-defined percentage] of repository maximum audit record storage capacity.

Supplemental Guidance

Organizations may have multiple audit data storage repositories distributed across multiple information system components, with each repository having different storage volume capacities.