- Intelligence Community
- Contact Us
This XML Data Encoding Specification for Enterprise Audit Exchange (AUDIT.XML) defines detailed specifications for using Extensible Markup Language (XML) to encode AUDIT.XML data in compliance with the Intelligence Community Abstract Data Definition (IC.ADD). This Data Encoding Specification (DES) defines the XML elements and attributes, associated structures and relationships, mandatory and cardinality requirements, and permissible values for representing AUDIT.XML data concepts using XML.
This technical specification is linked to Intelligence Community Standard 500-27, Collection and Sharing of Audit Data for Intelligence Community (IC) Information Resources by IC Elements. The technical specification detailed herein is the codification of the payload of an audit record exchange as defined in 500-27. The architecture, interface specifications, design, and implementation of the enterprise audit collection and exchange services are outside the scope of this technical specification. This technical specification only applies to the payload of an audit record exchange.
Compliance with this specification is measured against all aspects of the technical and documentary artifacts contained within the specification release package.
This specification is maintained by the IC Chief Information Officer via the Data Coordination Activity (DCA) and Common Metadata Standards Tiger Team (CMSTT).
Data Encoding Specification Downloads
The successes of our intelligence, defense, homeland security, and law enforcement missions are critically dependent on information producers and consumers being able to share, manage, discover, retrieve, and access information across national and international boundaries.
To automate the enterprise, data, service, network, and information assurance architecture and engineering efforts must come together in response to defined mission and business requirements. The enterprise data specifications below are the result of IC collaboration and coordination in response to public law, executive orders, DNI policy and guidance, and change requests submitted by IC elements.
The following data encoding specifications define agreed upon digital encodings or formats for information being shared or exchanged within the enterprise. These specifications are optimized for consistent and efficient processing within software, systems, or service applications.
These specifications should be viewed as component modules. Many of the specifications are tightly integrated and dependent on each other. They can be integrated into other data encoding specifications or profiled (i.e., configured or constrained) to achieve a particular mission or business objective. They may also serve in a standalone role as an encodings for exchange payloads within a web services environment.
Each version of an IC enterprise data encoding specification is individually registered in the IC Enterprise Standards Baseline (implemented via the IC Standards Registry (ICSR)). The registry citations address the prescriptive status and validity period for each new version. Data Encoding Specifications exist for the following types of data:
We are very interested in hearing your views on issues of importance to you. We encourage you to contact us with any questions, comments, and concerns of interest to the Intelligence Community Data Coordination Activity (Data Activity). Someone from the Data Activity staff will respond to your email.
As always, we thank you for your time and continued collaboration through the Data Activity.
Vision: An Integrated Intelligence Enterprise
Mission: To enable intelligence collection, analysis, and sharing through innovative, robust, and secure IT capabilities.
In 2012, the IC CIO embarked on the largest IT transformation in the history of the Intelligence Community. This transformation, guided by the IC Information Technology Enterprise (IC ITE) Strategy, is focused on enabling greater integration, information sharing, and information safeguarding through a common IC IT approach that substantially reduces costs. The IC ITE “officially opened for business” in August 2013.
The Office of the IC CIO provides strategic direction and oversight for the planning, assessing, implementing, and monitoring of IC ITE activities in support of the IC ITE vision of an “Integrated Intelligence Enterprise.”
The IC ITE Strategy 2016-2020 is focused on the three primary goals of IC ITE:
Goal 1: Enhance Intelligence Integration
Promote the Intelligence Community’s ability to integrate and unify intelligence activities by fully leveraging IC ITE.
Goal 2: Optimize Information Assurance to Secure and Safeguard the IC Enterprise
Enhance IC mission success through a trusted collaborative environment while protecting national intelligence information, sources, and methods, as well as privacy and civil liberties.
Goal 3: Operate as an Efficient, Effective IC Enterprise
Achieve an IC ITE operating model that employs common business practices and Community teams to deliver, adopt, and sustain shared enterprise services and capabilities across the IC.
The IC ITE represents a strategic shift from agency-centric information technology (IT) to a common enterprise platform where the IC can easily and securely share technology, information, and capabilities across the Community. To enable this change, the Director of National Intelligence (DNI), in consultation with the applicable IC element head, has designated IC elements as Service Providers, who assume the responsibility for developing and maintaining IC ITE services of common concern. IC ITE Services are the capabilities and shared solutions that are being delivered across the IC to help complete the vision of IC ITE. These services currently include: a common desktop environment; a joint cloud environment; an applications mail; an enterprise management capability; identification, authentication, and authorization capabilities; network requirements and engineering services; and a security coordination service.
Working with the IC under the IC ITE Strategy, the IC CIO is facilitating the development, implementation, and adoption of seamless and secure enterprise solutions that promote trusted collaboration – connecting people to people, people to data, and data to data. The strategy enhances the IC’s ability to securely discover, access, and share information across agencies and ultimately enables greater mission success.
IC ITE Implementation is an evolving process of consolidating and adopting Community capabilities. With the adoption of IC ITE Services, users will have broader and faster access to data and an increased ability to collaborate on common systems across the IC in ways that enhance mission integration and optimize mission success.
Congress passed the Intelligence Reform and Terrorism Prevention Act December 17, 2004, establishing the position of the Director of National Intelligence and the supporting Office of the DNI. Six days later, Congress established the Intelligence Community Chief Information Officer through the Intelligence Authorization Act of 2005, empowering the position with Community-wide authority over enterprise architecture. The act established four areas of IC CIO responsibility above and beyond those accorded to other federal-level CIOs through legislation.
President Barack Obama appointed Dr. Raymond (Ray) Cook to the position of Assistant Director of National Intelligence and IC CIO on July 23, 2015. The IC CIO reports directly to the Director of National Intelligence.
The Office of the IC CIO is organized to respond to the mission, business, and technology needs of the Intelligence Community, ensuring IC collectors and analysts have the secure services and capabilities they need to effectively do their jobs. The Office of the IC CIO has four divisions: Strategic Programs, Mission Engagement, Information Assurance, and Information Management.
You have selected to open
If you would like to not see this alert again, please click the
"Do not show me this again" check box below