The First Order of Business in Security Audit Trail Design

Q1: The security administrator must define the set

Q2: A _ is conducted to determine the

Q3: Applications, especially applications with a certain level

Q4: All UNIX implementations will have the same

Q6: The _ is a module on a

Q7: Data representing behavior that does not trigger

Q8: Thresholding is a form of baseline analysis.

Q9: Although important, security auditing is not a

Q10: The basic audit objective is to establish

Q11: Audit trails are different from audit logs.