← Back to catalog
AU-16(3)
Disassociability
Audit and Accountability (AU)
Baselines
Low · Not includedModerate · Not includedHigh · Not included
Description
Implement [assignment] to disassociate individuals from audit information transmitted across organizational boundaries.
Discussion
Preserving identities in audit trails could have privacy ramifications, such as enabling the tracking and profiling of individuals, but may not be operationally necessary. These risks could be further amplified when transmitting information across organizational boundaries. Implementing privacy-enhancing cryptographic techniques can disassociate individuals from audit information and reduce privacy risk while maintaining accountability.
Implementation guidance
No content available.
CSF 2.0 crosswalk
No CSF mappings exist for this control.