Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-54007 | O112-BP-023500 | SV-68247r1_rule | Medium |
Description |
---|
Review of audit trail data provides a means for detection of unauthorized access or attempted access. Frequent and regularly scheduled reviews ensure that such access is discovered in a timely manner. |
STIG | Date |
---|---|
Oracle Database 11.2g Security Technical Implementation Guide | 2017-04-05 |
Check Text ( C-54797r1_chk ) |
---|
If the database being reviewed is not a production database, this check is Not a Finding. Review policy and procedures documented or noted in the System Security plan as well as evidence of implementation for daily audit trail monitoring. If policy and procedures are not documented or evidence of implementation is not available, this is a Finding. |
Fix Text (F-58845r1_fix) |
---|
Develop, document and implement policy and procedures to monitor audit trail data daily. |