NIST 800-53 Rev. 5

AC
AT
AU
CA
CM
CP
IA
IR
MA
MP
PE
PL
PM
PS
PT
RA
SA
SC
SI
SR
AU-1
AU-2
AU-10(5)
AU-14(2)
AU-15
AU-2(1)
AU-3
AU-3(1)
AU-2(2)
AU-3(3)
AU-4
AU-4(1)
AU-5
AU-5(1)
AU-5(2)
AU-5(3)
AU-5(4)
AU-5(5)
AU-6
AU-6(1)
AU-2(3)
AU-6(3)
AU-6(4)
AU-6(5)
AU-6(6)
AU-6(7)
AU-6(8)
AU-6(9)
AU-2(4)
AU-7
AU-7(1)
AU-3(2)
AU-8
AU-6(10)
AU-6(2)
AU-9
AU-9(1)
AU-9(2)
AU-9(3)
AU-9(4)
AU-9(5)
AU-9(6)
AU-9(7)
AU-10
AU-10(1)
AU-10(2)
AU-10(3)
AU-10(4)
AU-7(2)
AU-11
AU-11(1)
AU-12
AU-12(1)
AU-12(2)
AU-12(3)
AU-12(4)
AU-13
AU-13(1)
AU-13(2)
AU-13(3)
AU-14
AU-14(1)
AU-8(1)
AU-14(3)
AU-8(2)
AU-16
AU-16(1)
AU-16(2)
AU-16(3)

AU-5(3): Response to Audit Logging Process Failures | Configurable Traffic Volume Thresholds

Control Text:

Enforce configurable network communications traffic volume thresholds reflecting limits on audit log storage capacity and [Selection: reject; delay] network traffic above those thresholds.

Organizations have the capability to reject or delay the processing of network communications traffic if audit logging information about such traffic is determined to exceed the storage capacity of the system audit logging function. The rejection or delay response is triggered by the established organizational traffic volume thresholds that can be adjusted based on changes to audit log storage capacity.

Related Controls

  • None