FedRAMP - Synchronization with Authoritative Time Source AU-8(1)

Overview:
The information system:
(a) Compares the internal information system clocks [Assignment: organization-defined frequency] with [Assignment: organization-defined authoritative time source]; and
(b) Synchronizes the internal system clocks to the authoritative time source when the time difference is greater than [Assignment: organization-defined time period].

Supplemental Guidance:
This control enhancement provides uniformity of time stamps for information systems with multiple system clocks and systems connected over a network.

Action Items:
1) Ensures that system clocks are set to an authoritative time source and audit logs reflect that time

Related Documents:
1) Audit and Accountability Policy

2) Logging and Monitoring Policy

3) Secure Systems Configuration Policy

Additional Guidance:
Moderate FedRAMP-Defined Assignment / Selection Parameters
[http://tf.nist.gov/tf-cgi/servers.cgi] [At least hourly]

Moderate Additional FedRAMP Requirements and Guidance
AU-8 (1) Requirement: The service provider selects primary and secondary time servers used by the NIST Internet time service. The secondary server is selected from a different geographic region than the primary server.
AU-8 (1) Requirement: The service provider synchronizes the system clocks of network computers that run operating systems other than Windows to the Windows Server Domain Controller emulator or to the same time source for that server.
AU-8 (1) Guidance: Synchronization of system clocks improves the accuracy of log analysis.