AU-09(03) Cryptographic Protection
Implement cryptographic mechanisms to protect the integrity of audit information and audit tools.
Baselines
- L
- M
- H
- P
Guidance
Cryptographic mechanisms used for protecting the integrity of audit information include signed hash functions using asymmetric cryptography. This enables the distribution of the public key to verify the hash information while maintaining the confidentiality of the secret key used to generate the hash.
Related controls 3
- AU-10 Non-repudiation L M H P
- SC-12 Cryptographic Key Establishment and Management L M H P
- SC-13 Cryptographic Protection L M H P