AU-2

Audit Events

Audit and Accountability

The information system generates audit records for the events defined in AU-2 a. through AU-2 d.

High PriorityAI-Relevant Control

Purpose

Generate comprehensive audit records to support security monitoring and incident response.

AI Relevance

Critical for auditing AI system usage, tracking model access, monitoring inference requests, and supporting AI security incident response.

Implementation Guidance

Configure comprehensive logging for all security-relevant events, implement centralized log management, and ensure log integrity.

Assessment

Test audit logging, verify log completeness, review audit records, and validate log protection mechanisms.

Requirements

  • 1Generate audit records for successful and unsuccessful account logon events
  • 2Generate audit records for successful and unsuccessful account management events
  • 3Generate audit records for successful and unsuccessful object access events
  • 4Generate audit records for successful and unsuccessful policy change events
  • 5Generate audit records for successful and unsuccessful privilege use events
  • 6Generate audit records for successful and unsuccessful process tracking events
  • 7Generate audit records for successful and unsuccessful system calls
  • 8Generate audit records for successful and unsuccessful system events
  • 9Generate audit records for successful and unsuccessful system restarts
  • 10Generate audit records for successful and unsuccessful system shutdowns

Related Controls

AU-3: AU-3AU-6: AU-6SI-4: System MonitoringIR-4: Incident Handling

References

NIST SP 800-53 Rev 5NIST Cybersecurity Framework

Framework Context

NIST 800-53 Rev 5

Security and Privacy Controls for Federal Information Systems

Official Documentation →

NIST AI RMF

AI Risk Management Framework

AI RMF Documentation →

OWASP AISVS

AI Security Verification Standard

AISVS Documentation →