Which of the following is the goal of an audit controls standard?

A. Implementing technical controls that protect ePHI from improper alteration or destruction
B. Restrict access to ePHI only to users and processes that have been specifically authorized
C. Implementing of hardware, software, and mechanisms that record and examine activity in information systems that contain ePHI
D. Verification that a person or process seeking to access ePHI is the one claimed

Answer: C
Explanation: The goal of the access control standard is to restrict access to ePHI only to users and processes that have been specifically authorized. The goal of the integrity controls standard is to implement technical controls that protect ePHI from improper alteration or destruction. The goal of the audit controls standard is to implement hardware, software, and mechanisms that record and examine activity in information systems that contain ePHI. The goal of a person or entity authentication standard is to verify that a person or process seeking to access ePHI is the one claimed.