Identity Proofing - Audit Logs, v3.0
Requirements for maintaining and reviewing audit logs.
Assessment Steps (7)
1
Audit Logs (AuditLogs)
Does the CSP maintain audit logs?
Artifact
Documentation
Provide sample (anonymized) logs and/or documentation about log contents.
|
2
Type of Proofing (TypeofProofing)
Do CSP audit logs include the type of identity proofing performed?
Artifact
Documentation
Provide sample (anonymized) logs and/or documentation about log contents.
|
3
Evidence (Evidence)
Does the CSP uniquely correlate identity evidence in the audit logs?
Artifact
Documentation
Provide sample (anonymized) logs and/or documentation about log contents.
|
4
PII Collected (PIICollected)
Does the CSP's audit logs include collected PII?
Artifact
Documentation
Provide sample (anonymized) logs and/or documentation about log contents.
|
5
Validation (Validation)
Does the CSP's audit logs include all steps taken to validate identity evidence?
Artifact
Documentation
Provide sample (anonymized) logs and/or documentation about log contents.
|
6
Verify Identity (VerifyIdentity)
Does the CSP's audit logs include all steps taken to verify the identity of the applicant?
Artifact
Documentation
Provide sample (anonymized) logs and/or documentation about log contents.
|
7
Outcome (Outcome)
Does the CSP's audit logs record each step and the final outcome of the identity proofing?
Artifact
Documentation
Provide sample (anonymized) logs and/or documentation about log contents.
|
Conformance Criteria (7)
Audit Logs
The CSP SHALL maintain a record, including audit logs, of:
Citation
SP800-63A
Section 4.2 P7
|
Type of Proofing
The CSP's audit logs SHALL include the type of identity proofing performed.
Citation
SP800-63A
Section 4.2 P7
|
Evidence
The CSP's audit logs SHALL include the types of and a unique reference to identity evidence collected from the Applicant / Service Consumer in the proofing process.
Citation
SP800-63A
Section 4.2 P7
|
PII Collected
The CSP's audit logs SHALL include PII or other responses collected from authoritative and/or issuing sources.
Citation
SP800-63A
Section 4.2 P7
|
Validation
The CSP's audit logs SHALL include all steps taken to validate the identity evidence.
Citation
SP800-63A
Section 4.2 P7
|
Verify Identity
The CSP's audit logs SHALL include all steps taken to verify the identity of the Applicant.
Citation
SP800-63A
Section 4.2 P7
|
Outcome
The CSP's audit logs SHALL include the outcome of each step, culminating in the final proofing result.
Citation
SP800-63A
Section 4.2 P7
|