Expand description
Structured audit trail (NIAP CA PP FAU family).
All EST and administrative operations that must be logged for Common
Criteria evaluation call record. The function inserts one row into
audit_events, enforces the overflow policy (FAU_STG.4), and maintains
the rolling security-violation counter for the alarm response (FAU_ARP.1).
§NIAP CA PP requirements implemented
| SFR | Requirement | Implementation |
|---|---|---|
| FAU_GEN.1 | Audit record generation | AuditEventType taxonomy covers all required events |
| FAU_STG.1(1) | Audit trail protection | Append-only at application level |
| FAU_STG.4 | Audit storage exhaustion | [OverflowAction::Halt] rejects EST operations |
| FAU_ARP.1 | Security alarm | Alarm after N consecutive violations |
Structs§
- Audit
Event - A single audit event ready for recording.
- Audit
State - Shared audit state (overflow flag, alarm counter).
Enums§
- Audit
Event Type - Every auditable operation the server can perform.
Functions§
- record
- Record an audit event to the database.