Questions tagged [audit]

A set of processes or functionality that tracks changes to one or more components of a system, ensuring the completeness and accuracy of transaction processing, authorization, and validity of system operations.

Audit controls (in software development) are a series of procedures that track changes to systems or components of a larger system. The exact systems or components that are subject to audit are determined by the risk exposure of the overall system.

The most common types of audit controls are (see "Information technology audit" article on Wikipedia):

Data Capture Controls – ensures that all transactions are recorded in the application system, transactions are recorded only once, and rejected transactions are identified, controlled, corrected, and re-entered into the system.
Data Validation Controls – ensures that all transactions are properly valued.
Processing Controls – ensures the proper processing of transactions.
Output Controls – ensures that computer output is not distributed or displayed to unauthorized users.
Error Controls – ensures that errors are corrected and resubmitted to the application system at the correct point in processing.

Most of these controls are applied at the systems level. For example ACID compliant databases systems provide a level of data capture control.

You should tag your question with audit if you're asking about any of the following:

Tracking changes to a system
"Who did what" controls
How to implement a "Maker-Checker" workflow

Questions related to general system logging of events and errors should not be tagged with audit.

1160 questions

votes

3 answers

Google Audit Question

The following external CSS files were included after an external JavaScript file in the document head. To ensure CSS files are downloaded in parallel, always include external CSS before external JavaScript. 1 inline script block was…

javascript html audit

asked Dec 15 '10 at 16:53

Tom Gullen

61,249
84
283
456

votes

5 answers

Implementing Audit Trail for Objects in C#?

I'm looking for ideas on how to implement audit trails for my objects in C#, for the current project,basically I need to: Store the old values and new values of a given object. Record creation of new objects. Deletion of old object. Is there any…

c# object audit trail

asked Nov 30 '08 at 14:23

abmv

7,042
17
62
100

votes

2 answers

Detect IP address of GitHub commit

i'm the owner of a few corporate github repositories. Lately we have been suspicious of a developer who may be enlisting outsourced help through his borrowed github identity (many 4am commits in batches). Is there a way on github.com to determine…

git github audit code-access-security

asked Nov 17 '14 at 22:16

joe mediocrity

votes

2 answers

How to find out who ran the TFS Destroy Command?

I have reason to believe that the TFS Destroy command was run on my server. Does TFS provide a way to find out who and when it was done?

tfs audit destroy

asked Feb 07 '12 at 22:30

Vic Peters

votes

5 answers

How to audit a Java EE project?

I've to audit the code-architecture quality and maintainability (in the end to be sure we have what we paid for) a Java EE web project based on JSF/CDI/EJB3.0/JPA (just to name some of the technologies involved). This may not be the right place to…

java jakarta-ee architecture audit

asked Nov 01 '11 at 09:58

LB40

12,041
17
72
107

votes

5 answers

Audit Logging Strategies

I am trying to decide on the best method for audit logging within my application. The main reason for the log is reporting the sequence of events (changes). I have a hierarchy of Objects, I need to create reports when something changes on any part…

nhibernate logging audit

asked Mar 05 '09 at 23:57

Nathan Fisher

7,961
3
47
68

votes

1 answer

NPM 6 - Should I audit fix all package vulnerabilities?

After installing NPM 6 almost every NPM package that I install on an Angular 6 project has vulnerabilities. Should I "npm audit fix" every package each time? Should I reinstall NPM 5? Other solution? This is the terminal sequlize code I used with…

security npm npm-install audit angular6

asked Jun 12 '18 at 17:18

Amos

votes

2 answers

Oracle - Audit Trail Generator?

I am looking for a generic procedure that will generate audit trails for Oracle databases. We are currently using a similar procedure on SQL Server and wondering if an Oracle equivalent exists. We are hoping the audit table will be a separate table…

oracle audit

asked Oct 09 '17 at 17:29

AAA

2,388
9
32
47

votes

3 answers

How to get table_name in a trigger - SQL Server

I've created a trigger which task is to store information about the trigger-events. For example: "New employee added to the table on date 2014-10-13. I've created a table - Audit - which stores all the information (from the trigger). CREATE TABLE…

sql-server triggers audit

asked Oct 13 '14 at 08:43

ChrisRun

votes

7 answers

Oracle - Triggers to create a history row on update

First, we currently have the behavior that's desired, but it's not trivial to maintain when any changes to the database are needed. I'm looking for anything simpler, more efficient, or easier to maintain (anything that does any of those 3 would be…

oracle triggers audit

asked Feb 10 '10 at 16:57

Nick Craver

623,446
136
1,297
1,155

votes

2 answers

The command npm audit-level is not working when trying to change level to high

I have a front-end app with NodeJS and I am trying to make the npm audit break only on high or critical vulnerabilities, so I tried to change the audit-level as specified in the documentation, but it would still return the low vulnerabilities as you…

node.js npm audit npm-audit

asked May 18 '20 at 17:44

Andres Alejandre

votes

0 answers

Auditing in Express.js Middleware

Im looking at universal way to audit the express middleware that I have written for some APIs. I have come up with several ways of doing but none seems that efficient to me. For now I'm only wanting to log to console or a log file but later on I…

node.js express middleware audit audit-logging

asked Oct 06 '16 at 21:31

nixgadget

6,983
16
70
103

votes

2 answers

How to implement Auditing/versioning of Table Modifications on PostgreSQL

We're implementing a New system using Java/Spring/Hibernate on PostgreSQL. This system needs to make a copy of Every Record as soon as a modification/deletion is done on the record(s) in the Tables(s). Later, the Audit Table(s) will be queried by…

database postgresql versioning audit database-versioning

asked Jul 06 '10 at 13:06

anjanb

12,999
18
77
106

votes

1 answer

How to log application auditing to separate file on Wildfly 8

I have a Java EE application running on Wildfly 8 in which I want to enable audit logging. Using an InterceptorBinding and Interceptor I am able to catch all relevant API calls. What I want to do is to write these audit calls to a separate audit log…

java logging wildfly audit

asked Dec 16 '14 at 08:01

Koeus

votes

2 answers

Advice on Change Tracking in Sql Server 2008

My client is looking for a way to do a full audit trails (full view of historical data on all tables) on the application. Other than using the old fashioned way of having table copies or storing field name, field value, modified by, modified on…

sql sql-server-2008 audit change-tracking audit-trail

asked Feb 23 '10 at 13:07

Binoj Antony

15,886
25
88
96

Prev 1 2 3

…

77 78 Next