IT control objectives are useful to IS auditors, as they provide the basis for understanding the: 
A、desired result or purpose of implementing specific control procedures. 
B、best IT security control practices relevant to a specific entity. 
C、techniques for securing information. 
D、security policy.