SRG-OS-000479-GPOS-00224

The operating system must, at a minimum, off-load audit data from interconnected systems in real time and off-load audit data from standalone systems weekly.

Details
Associations

Canonical Source

SV-203777r959008_rule ( from General Purpose Operating System Security Requirements Guide )

Description

Information stored in one location is vulnerable to accidental or incidental deletion or alteration. Off-loading is a common process in information systems with limited audit storage capacity.