STIGViewer Trial workspace — loading your subscription…

NIST 800-53 Rev 5

424 controls available

AU-7moderatehigh

Audit Record Reduction and Report Generation

Audit and Accountability

Control Statement

Provide and implement an audit record reduction and report generation capability that:

Discussion

Audit record reduction is a process that manipulates collected audit log information and organizes it into a summary format that is more meaningful to analysts. Audit record reduction and report generation capabilities do not always emanate from the same system or from the same organizational entities that conduct audit logging activities. The audit record reduction capability includes modern data mining techniques with advanced data filters to identify anomalous behavior in audit records. The report generation capability provided by the system can generate customizable reports. Time ordering of audit records can be an issue if the granularity of the timestamp in the record is insufficient.

Framework
NIST SP 800-53 Rev 5
Family
Audit and Accountability
Baselines
moderate, high

Related Frameworks

17 paths across 2 frameworks
NIST 800-1711 mapping
3.3.6
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI16 mappings
CCI-001875
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-001876
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-001877
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-001878
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-001879
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-001880
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-001881
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-001882
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003822
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003823
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003824
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003825
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003826
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003827
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003828
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003829
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent

Related STIGs

15 STIGs reach this control through 23 CCIs. Expand a row to see the responsible NICE and O*NET roles.

Operating System — Server

5 STIGs

Operating System — Mainframe

3 STIGs
Mainframe Product Security Requirements Guide
V3R42025-09-109 of 194 findings match
IBM z/OS RACF Security Technical Implementation Guide
V9R82026-03-091 of 222 findings match

Web / Application Server

2 STIGs

Virtualization / Container

2 STIGs
Virtual Machine Manager Security Requirements Guide
V2R32025-09-109 of 198 findings match
Container Platform Security Requirements Guide
V2R42025-09-101 of 188 findings match

Endpoint Security Management

3 STIGs
Central Log Server Security Requirements Guide
V3R42026-02-1220 of 127 findings match
Tanium 7.x Security Technical Implementation Guide
V2R32025-05-141 of 98 findings match