Understanding Auditing and Accountability

Chapter 1 introduced the AAAs of security: authentication, authorization, and accounting. When used together, they ensure that only authorized entities (such as users or applications) can access systems or data and provide a record of the activity. Chapter 2 presented access controls, including the different types of authentication, and the different types of access controls. Auditing provides the accounting component so that individual actions are tracked and recorded.

Auditing typically is performed in one of two methods. They are different processes, but both methods are part of an overall auditing strategy:

Auditing activity through logs Audit logs record activity and can be inspected at any time ...

Get SSCP Systems Security Certified Practitioner All-in-One Exam Guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.