A Tiered Strategy for Auditing in the Cloud (R. Xie & R. Gamble) was part of the work-in-progress presentations at IEEE CLOUD 2012. This work documented initial scoping rules for audit assets formed within the cloud. An example compilation process showed how the audit assets can be filtered and combined within and across scopes to provide specific perspectives of audit trails to detect temporal behaviors related to attack patterns. The work initiated discussion on the accumulation and use of audit asset from foreign clouds as part of a federation, tying into the SecAgreement work to establish expectations of cloud responses as part of an SLA. Work to combine these two areas has begun.