SRG-OS-000342-GPOS-00133

The operating system must offload audit records onto a different system or media from the system being audited.

Details
Associations

Canonical Source

SV-203701r958754_rule ( from General Purpose Operating System Security Requirements Guide )

Description

Information stored in one location is vulnerable to accidental or incidental deletion or alteration. Off-loading is a common process in information systems with limited audit storage capacity.