Information technology audit
When auditing is about the logging of records that specify which user or which person (see User ) at what time did what in IT systems. The records to be stored relating to security incidents in IT systems. The control of this logging is done from the outside, do not talk is programmed in the respective IT system.
Benefit
- Monitoring of accesses to security-related functions or data
- Allows investigation of the historical versions of a record, which were stored at each change ( special form of log file)
- Processing of security incidents
- By knowing about auditing security incidents are prevented preventive
Examples
- Creation or deletion of a user in a Directory
- Changes in the bank account of a customer in an application