When you audit data, you do so to obtain an accurate picture of who did what, when, where, and how. You might need this picture to satisfy internal or external requirements; in either case, security of the data collected is essential. Your auditing solution must provide you the means to control and manage the data you audit, preserve its integrity during storage, and prevent it from being tampered with or modified in any way.
In addition, the security provisions you implement must be applicable across all potential avenues of entry to the audit data: from SQL, an ABL client, and the database utilities. To accomplish this, OpenEdge employs an authorization solution based on the granting and revocation of auditing privileges, which allows you to manage audit access and separate audit duties.
