NIST 800-53 r5 · Controls catalogue · Family AU
AU-8Time Stamps
Use internal system clocks to generate time stamps for audit records; and Record time stamps for audit records that meet {{ insert: param, au-08_odp }} and that use Coordinated Universal Time, have a fixed local time offset from Coordinated Universal Time, or that include the local time offset as part of the time stamp.
Last updated: 09 May 2026 03:25 UTC
Implementations targeting this control (0)
- No implementations targeting this control yet.
ATT&CK techniques this control mitigates (0)
- No ATT&CK techniques mapped to this control yet.
Weaknesses this control addresses (3)AI
CWEs ranked by how often they appear in real CVEs. The rationale describes how this control reduces exploitability of each weakness class.
| CWE | Name | CVEs | Why this control addresses it |
|---|---|---|---|
CWE-362 | Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') | 2,603 | Accurate timestamps from internal clocks enable detection of race conditions by providing reliable event ordering in audit logs. |
CWE-367 | Time-of-check Time-of-use (TOCTOU) Race Condition | 755 | Timestamps meeting UTC or offset standards help identify TOCTOU issues through precise chronological reconstruction of check/use operations. |
CWE-778 | Insufficient Logging | 23 | Requiring internal clock-based timestamps directly improves audit record completeness, reducing the impact of insufficient logging for incident analysis. |
Top CVEs where this control is the strongest mitigation
| CVE | Risk | CVSS | EPSS | Match |
|---|---|---|---|---|
| No CVEs annotated to this control yet — the per-CVE backfill is in progress. | ||||