STIGQter: STIG Summary: Oracle Database 11g Instance STIG Version: 8 Release: 20 Benchmark Date: 28 Jul 2017:

Audit trail data should be retained for one year.

DISA Rule

SV-24368r1_rule

Vulnerability Number

V-2507

Group Title

DBMS audit data maintenance

Rule Version

DG0030-ORACLE11

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Develop, document and implement an audit retention policy and procedures.

It is recommended that the most recent thirty days of audit logs remain available online.

After thirty days, the audit logs may be maintained offline.

Online maintenance provides for a more timely capability and inclination to investigate suspicious activity.

Check Contents

Review and verify the implementation of an audit trail retention policy.

Verify that audit data is maintained for a minimum of one year.

If audit data is not maintained for a minimum of one year, this is a Finding.

Vulnerability Number

V-2507

Documentable

False

Rule Version

DG0030-ORACLE11

Severity Override Guidance

Review and verify the implementation of an audit trail retention policy.

Verify that audit data is maintained for a minimum of one year.

If audit data is not maintained for a minimum of one year, this is a Finding.

Check Content Reference

M

Responsibility

Database Administrator

Target Key

1367

Comments