Audit tools provide services, such as audit reduction, reporting, and analysis. Without mechanisms, such as a signed hash using asymmetric cryptography, the integrity of these audit tools used for audit reduction and reporting, as well as the collected data garnered from them, is not fully protected.
Audit tools integrated into the network device must use cryptographic mechanisms to protect and store audit information transmitted or stored by these tools. This is not applicable because not all network devices have the capabilities of having additional tools implemented. This would be a function of the application or tool. |