What must be protected according to NISPOM when it comes to audit trails?

Protecting information integrity from unauthorized deletions is critical according to the National Industrial Security Program Operating Manual (NISPOM) because audit trails serve as a crucial mechanism for tracking user activity and maintaining accountability within secure systems. By ensuring that these audit trails are intact and have not been tampered with, organizations can effectively monitor for potential insider threats and other security incidents.

Preserving the integrity of audit trails helps in establishing a reliable record of access and actions taken within the system, which is vital for forensic analysis in the event of a security breach. If an insider were to delete or alter these logs, it could significantly hinder an organization’s ability to investigate and respond to threats.

In this context, focusing on unauthorized deletions encapsulates the broader requirement of integrity and security of the audit trail, underscoring the importance of maintaining comprehensive and accurate records for security purposes. Looking at the other options, they do not fully capture the essential aspect of protecting against manipulation of audit data which could lead to compromised security measures.