The IT Law Wiki
The IT Law Wiki

Citation[]

U.S. Department of Defense, A Guide to Understanding Audit in Trusted Systems (NCSC-TG-001) (July 28, 1987) (known as the "Tan Book") (full-text).

Overview[]

This publication was issued by the National Computer Security Center (NCSC) under the authority of and in accordance with Department of Defense Directive (DoDD) 5215.1. The guidelines provide a set of good practices related to the use of auditing in automatic data processing systems employed for processing classified and other sensitive information.