This Recommendation | International Standard describes a basic model for handling security alarms and for conducting a security audit for open systems. A security audit is an independent review and examination of system records and activities. The security audit service provides an audit authority with the ability to specify, select and manage the events which need to be recorded within a security audit trail.