Machine-independent audit trail analysis - a tool for continuous audit assurance

Article

Best, Peter J.. 2004. "Machine-independent audit trail analysis - a tool for continuous audit assurance." Intelligent Systems in Accounting, Finance and Management. 12 (2), pp. 85-102. https://doi.org/10.1002/isaf.243
Article Title

Machine-independent audit trail analysis - a tool for continuous audit assurance

ERA Journal ID32090
Article CategoryArticle
Authors
AuthorBest, Peter J.
Journal TitleIntelligent Systems in Accounting, Finance and Management
Journal Citation12 (2), pp. 85-102
Number of Pages18
Year2004
Place of PublicationUnited Kingdom
ISSN1055-615X
1099-1174
1550-1949
2160-0074
Digital Object Identifier (DOI)https://doi.org/10.1002/isaf.243
Abstract

[Summary]: This paper reports the results of a research project which examines the feasibility of developing a machine-independent audit trail analyser (MIATA). MIATA is a knowledge based system which performs intelligent analysis of operating system audit trails. Such a system is proposed as a decision support tool for auditors when assessing the risk of unauthorised user activity in multi-usercomputer systems. It is also relevant to the provision of a continuous assurance service to clients by internal and external auditors. Monitoring user activity in system audit trails manually is impractical because of the vast quantity of events recorded in those audit trails. However, if done manually, an expert security auditor would be needed to look for 2 main types of events - user activity rejected by the system's security settings (failed actions) and user's behaving abnormally (e.g. unexpected changes in activity such as the purchasing clerk attempting to modify payroll data). A knowledge based system is suited to applications that require expertise to perform well-defined, yet complex, monitoring activities (e.g. controlling nuclear reactors and detecting intrusions in computer systems). To permit machine-independent intelligent audit trail analysis, an anomaly-detection approach is adopted. Time series forecasting methods are used to develop and maintain the user profile database (knowledge base) that allows identification of users with rejected behaviour as well as
abnormal behaviour. The knowledge based system maintains this knowledge base and permits reporting on the potential intruder threats (summarized in Table 1). The intelligence of the MIATA system is its ability to handle audit trails from any system, its knowledge base capturing rejected user activity and detecting anomalous activity, and its reporting capabilities focusing on known methods of intrusion. MIATA also updates user profiles and forecasts of behaviour on a daily basis. As such, it also 'learns' from changes in user behaviour. The feasibility of generating machine-independent audit trail records, and the applicability of the anomaly-detection approach and time series forecasting methods are demonstrated using three case studies. These results support the proposal that developing a machine-independent audit trail analyser is feasible. Such a system will be an invaluable aid to an auditor in detecting potential computer intrusions and monitoring user activity.

Keywordsaudit trails, intrusion detection, continuous assurance
ANZSRC Field of Research 2020350102. Auditing and accountability
460908. Information systems organisation and management
Public Notes

File reproduced in accordance with the copyright policy of the publisher/author.

Byline AffiliationsQueensland University of Technology
Permalink -

https://research.usq.edu.au/item/9z443/machine-independent-audit-trail-analysis-a-tool-for-continuous-audit-assurance

Log in to edit

Download files

Accepted Version
Best_Mohay_Anderson_2004_AV.pdf
File access level: Anyone

  • 1833
    total views
  • 222
    total downloads
  • 1
    views this month
  • 0
    downloads this month

Export as

Related outputs

Managing Change Toward Environmental Sustainability: A Conceptual Model in Small and Medium Enterprises
Wiesner, Retha, Chadee, Doren and Best, Peter. 2017. "Managing Change Toward Environmental Sustainability: A Conceptual Model in Small and Medium Enterprises ." Organization and Environment: international journal of ecosocial research. 31 (2), pp. 152-177. https://doi.org/10.1177/1086026616689292
BDO not-for-profit fraud survey 2006
Best, Peter J., Buckby, Sherrena and Bundesen, Lisa. 2006. BDO not-for-profit fraud survey 2006. Brisbane, Australia. BDO (Australia) Ltd..
BDO not-for-profit fraud survey 2008
Best, Peter J., Buckby, Sherrena and Bundesen, Lisa. 2008. BDO not-for-profit fraud survey 2008. Brisbane. BDO (Australia) Ltd..
Accounting
Horngren, C. T., Harrison, W. T., Bamber, L. S., Best, P. J., Fraser, D. J. and Willett, R. J.. 2007. Accounting. Pearson Education Australia.
Costing government outputs: an assessment of activity based costing
Hampson, Veronica, Best, Peter and Kavanagh, Marie. 2014. "Costing government outputs: an assessment of activity based costing." Journal of American Academy of Business, Cambridge. 20 (1), pp. 24-32.
Financial accounting, 6th ed.
Horngren, Charles T., Harrison, Walter T., Fraser, David, Best, Peter and Willett, Roger. 2010. Financial accounting, 6th ed. Sydney, Australia. Pearson Australia Group.
Accounting, 6th ed.
Horngren, Charles T., Harrison, Walter T., Bamber, Linda S., Best, Peter, Fraser, David and Willett, Roger. 2009. Accounting, 6th ed. Sydney, Australia. Pearson Australia Group.
Essentials of auditing, assurance services and ethics in Australia: an integrated approach
Arens, Alvin A., Best, Peter, Shailer, Greg and Fiedler, Brenton. 2009. Essentials of auditing, assurance services and ethics in Australia: an integrated approach. Sydney, Australia. Pearson Education Australia.
Auditing, assurance services and ethics in Australia: an integrated approach
Arens, Alvin, Best, Peter, Shailer, Gregory, Fiedler, Brenton, Elder, Randal and Beasley, Mark. 2010. Auditing, assurance services and ethics in Australia: an integrated approach. Sydney. Pearson Education Australia.
A research report on developing an initial best practice framework for managing environmental sustainability change in Australian small and medium size enterprises (SMEs)
Wiesner, Retha, Chadee, Doren and Best, Peter. 2010. A research report on developing an initial best practice framework for managing environmental sustainability change in Australian small and medium size enterprises (SMEs). Toowoomba, Australia. University of Southern Queensland.
Sustainability reporting and assurance: a historical analysis on a world-wide phenomenon
Mori Junior, Renzo, Best, Peter J. and Cotter, Julie. 2014. "Sustainability reporting and assurance: a historical analysis on a world-wide phenomenon." Journal of Business Ethics. 120 (1), pp. 1-11. https://doi.org/10.1007/s10551-013-1637-y
Proactive fraud detection in enterprise systems
Singh, Kishore, Best, Peter and Mula, Joseph M.. 2011. "Proactive fraud detection in enterprise systems." 2nd International Conference on Business and Information: Steering Excellence of Business Knowledge (ICBI 2011). Kelaniya, Sri Lanka 20 Oct 2011 Kelnaiya, Sri Lanka.
Insights into sustainability change management from an organisational learning perspective: learning from SME sustainability champions
Wiesner, Retha, Chadee, Doren and Best, Peter. 2011. "Insights into sustainability change management from an organisational learning perspective: learning from SME sustainability champions." Sohal, Amrik (ed.) QIK 2011: Aligning Innovation in Developed and Emerging Economies. Kuala Lumpur, Malaysia 15 - 18 Feb 2011 Kuala Lumpur, Malaysia.
Financial Accounting, Fifth Edition
Horngren, C. T., Harrison, W.T., Bamber, L. S., Best, P. J., Fraser, D. J. and Willett, R. J.. 2006. Financial Accounting, Fifth Edition. Sydney. Pearson Education Australia.
The current state of information technology governance literature
Buckby, Sherrena, Best, Peter and Stewart, Jenny. 2009. "The current state of information technology governance literature." Cater-Steel, Aileen (ed.) Information technology governance and service management: frameworks and adaptations. Hershey, PA. USA. IGI Global. pp. 1-43
Auditing and assurance services in Australia: an integrated approach, 7th ed.
Arens, Alvin A., Best, Peter, Shailer, Gregory, Fiedler, Brenton, Elder, Randal J. and Beasley, Mark. 2007. Auditing and assurance services in Australia: an integrated approach, 7th ed. Sydney, Australia. Pearson Education Australia.
Carbon reporting in the Queensland public Sector: the state of play, trends and better practices
Shead, Bob, Best, Peter J. and McCabe, Simon. 2009. Carbon reporting in the Queensland public Sector: the state of play, trends and better practices. Brisbane, Australia. BDO (Australia) Ltd..
BDO not-for-profit fraud survey 2010
Howard, Andrew and Best, Peter J.. 2010. BDO not-for-profit fraud survey 2010. Brisbane, Australia. BDO (Australia) Ltd..
Critical pre-implementation elements in engendering change for sustainability in SMEs: insights from SME sustainability leaders
Wiesner, Retha, Chadee, Doren and Best, Peter J.. 2010. "Critical pre-implementation elements in engendering change for sustainability in SMEs: insights from SME sustainability leaders." O'Connor, Christine (ed.) 10th Annual Pacific Employment Relations Association Conference (PERA 2010) : Sustainability, Inclusiveness and Governance: People Management Issues in the Organisation of the Future. Gold Coast, Australia 15 - 18 Nov 2010 Ballarat, Australia.
Managing environmental sustainability in SMEs: learning from the stars: a research report on developing a best practice framework for managing environmental sustain-ability in Australian small and medium size enterprises (SMEs)
Wiesner, Retha, Chadee, Doren, Best, Peter J. and Poole, Nicci. 2010. Managing environmental sustainability in SMEs: learning from the stars: a research report on developing a best practice framework for managing environmental sustain-ability in Australian small and medium size enterprises (SMEs). Toowoomba, Australia. University of Southern Queensland.
IS audit issues with enterprise management systems
Green, Peter F. and Best, Peter J.. 2003. "IS audit issues with enterprise management systems." 2003 Accounting and Finance Association of Australia and New Zealand Conference (2003 AFAANZ) . Brisbane, Australia 06 - 08 Jul 2003 Melbourne, Australia.
A framework for assessing the effectiveness of performance measurement practices
Hampson, Veronica M.-M. and Best, Peter J.. 2005. "A framework for assessing the effectiveness of performance measurement practices." 3rd Conference On Performance Measurement And Management Control. Nice, France 22 - 23 Sep 2005
Continuous fraud detection in enterprise systems through audit trial analysis
Best, Peter J., Rikhardsson, Pall and Toleman, Mark. 2009. "Continuous fraud detection in enterprise systems through audit trial analysis." Journal of Digital Forensics, Security and Law. 4 (1), pp. 39-60.
The accounting information systems curriculum: compliance with IFAC requirements
Chayeb, Lwana and Best, Peter J.. 2005. "The accounting information systems curriculum: compliance with IFAC requirements." International Conference on Innovation in Accounting Teaching and Learning (2005). Hobart, Australia 06 - 08 Feb 2005 Hobart, Australia.
Information systems audit and control issues with enterprise management systems: qualitative evidence
Green, Peter F., Best, Peter J., Indulska, Marta and Rowlands, Terry. 2005. "Information systems audit and control issues with enterprise management systems: qualitative evidence." Australian Accounting Review. 15 (3), pp. 68-77.
The role of boards in reviewing information technology governance (ITG) as part of organizational control environment assessments
Buckby, Sherrena, Best, Peter J. and Stewart, Jenny. 2005. "The role of boards in reviewing information technology governance (ITG) as part of organizational control environment assessments." Cusack, B. (ed.) 2005 IT Governance International Conference. Auckland, New Zealand 14 - 16 Nov 2005
Development of a board IT governance (ITG) review model
Buckby, Sherrena and Best, Peter J.. 2007. "Development of a board IT governance (ITG) review model." 2007 Accounting and Finance Association of Australia and New Zealand Conference (2007 AFAANZ). Gold Coast, Australia 01 - 03 Jul 2007 Melbourne, Australia.
A framework for separation of duties in an SAP R/3 environment
Little, Adam G. and Best, Peter J.. 2003. "A framework for separation of duties in an SAP R/3 environment." Managerial Auditing Journal. 18 (5), pp. 419-430. https://doi.org/10.1108/02686900310476882
Sarbanes-Oxley compliance, internal control, and ERP systems: the case of mySAP ERP
Rikhardsson, Pall, Best, Peter and Juhl-Christensen, Claus. 2008. "Sarbanes-Oxley compliance, internal control, and ERP systems: the case of mySAP ERP." Ferran, Carlos and Salim Kuossa, Ricardo (ed.) Enterprise resource planning for global economies: managerial issues and challenges. Hershey PA, USA. IGI Global.