UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

Audit trail data should be reviewed daily or more frequently.


Overview

Finding ID Version Rule ID IA Controls Severity
V-3827 DG0095-ORACLE10 SV-24404r1_rule ECAT-1 Medium
Description
Review of audit trail data provides a means for detection of unauthorized access or attempted access. Frequent and regularly scheduled reviews ensures that such access is discovered in a timely manner.
STIG Date
Oracle 10 Database Installation STIG 2014-01-14

Details

Check Text ( C-24307r1_chk )
If the database being reviewed is not a production database, this check is Not a Finding.

Review policy and procedures documented or noted in the System Security plan as well as evidence of implementation for daily audit trail monitoring.

If policy and procedures are not documented or evidence of implementation is not available, this is a Finding.
Fix Text (F-20460r1_fix)
Develop, document and implement policy and procedures to monitor audit trail data daily.