We do a much better job of designing our access controls than we do designing our audit trail. We should start by identifying what an audit trail should do for us. It should enable management to determine:
- how every record or object (e.g. program, file, record) got to look the way it looks currently,
- how every record or object looked at any given time in the past,
- and enable us to fix accountability for every significant event or change to a single process or individual.