Audit trail data must be reviewed daily or more frequently.


Overview

Finding ID Version Rule ID IA Controls Severity
V-61457 O121-BP-023500 SV-75947r1_rule Medium
Description
Review of audit trail data provides a means for detection of unauthorized access or attempted access. Frequent and regularly scheduled reviews ensure that such access is discovered in a timely manner.
STIG Date
Oracle Database 12c Security Technical Implementation Guide 2015-12-21

Details

Check Text ( C-62347r2_chk )
If the database being reviewed is not a production database, this check is not a finding.

Review policy and procedures documented or noted in the System Security plan as well as evidence of implementation for daily audit trail monitoring.

If policy and procedures are not documented or evidence of implementation is not available, this is a finding.
Fix Text (F-67373r2_fix)
Develop, document and implement policy and procedures to monitor audit trail data daily.