The operating system must support an audit reduction capability.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-32967	SRG-OS-000052-NA	SV-43365r1_rule		Medium

Description
Audit reduction is used to reduce the volume of audit records in order to facilitate manual review. Before a security review information systems and/or applications with an audit reduction capability may remove many audit records known to have little security significance. Rationale for non-applicability: This vulnerability is better addressed by CCI-000136, which covers this on central log management because log servers will perform report generation and audit reduction.

Description

Audit reduction is used to reduce the volume of audit records in order to facilitate manual review. Before a security review information systems and/or applications with an audit reduction capability may remove many audit records known to have little security significance. Rationale for non-applicability: This vulnerability is better addressed by CCI-000136, which covers this on central log management because log servers will perform report generation and audit reduction.

STIG	Date
Mobile Operating System Security Requirements Guide	2013-07-03

Details

Check Text ( C-41268r1_chk )
This requirement is NA for the Mobile OS SRG.

Fix Text (F-36882r1_fix)
The requirement is NA. No fix is required.