SSCP Question #344: Real Exam Question with Answer & Explanation

The correct answer is A: Audit mechanisms.. Is a means of being able to track user actions. Through the use of audit logs and other tools the user actions are recorded and can be used at a later date to verify what actions were performed. Accountability is the ability to identify users and to be able to track user actions.

Submitted by wei.xz· Apr 18, 2026Security Operations and Administration

Question

Which of the following is needed for System Accountability?

Options

AAudit mechanisms.
BDocumented design as laid out in the Common Criteria.
CAuthorization.
DFormal verification of system design.

Explanation

Is a means of being able to track user actions. Through the use of audit logs and other tools the user actions are recorded and can be used at a later date to verify what actions were performed. Accountability is the ability to identify users and to be able to track user actions. The following answers are incorrect: Documented design as laid out in the Common Criteria. Is incorrect because the Common Criteria is an international standard to evaluate trust and would not be a factor in System Authorization. Is incorrect because Authorization is granting access to subjects, just because you have authorization does not hold the subject accountable for their actions. Formal verification of system design. Is incorrect because all you have done is to verify the system design and have not taken any steps toward system accountability.

Topics

#Accountability#Auditing#Security Principles#Logging

Community Discussion

No community discussion yet for this question.

Full SSCP Practice Browse All SSCP Questions