Audit and Accountability (AU)

The Audit and Accountability (AU) family defines security controls that ensure activity on information systems is recorded, protected, and examined to support monitoring, incident response, and compliance. It covers requirements for generating audit logs, restricting access to log information, reviewing and analyzing audit records, and retaining them for specified periods.