AU-12(4)

  • Requirement

    Provide and implement the capability for auditing the parameters of user query events for data sets containing personally identifiable information.

  • Discussion

    Query parameters are explicit criteria that an individual or automated system submits to a system to retrieve data. Auditing of query parameters for datasets that contain personally identifiable information augments the capability of an organization to track and understand the access, usage, or sharing of personally identifiable information by authorized personnel.

More Info

  • Title

    Audit Record Generation | Query Parameter Audits of Personally Identifiable Information
  • Family

    Audit and Accountability
  • NIST 800-53B Baseline(s)

    • Related NIST 800-53 ID

    NIST 800-53A Assessment Guidance

    CMMC Training

    Our CMMC Overview Course simplifies CMMC. Enroll so you can make informed decisions!