A secure log architecture to support remote auditing

Mathematical and Computer Modelling

Volumn 57, Issue 7-8, 2013, Pages 1578-1591

  Accorsi, Rafael ^a  

^a UNIVERSITY OF FREIBURG   (Germany)

Author keywords

Public key cryptography; Remote auditing; Secure digital archiving; Secure log architecture

Indexed keywords

DIGITAL ARCHIVING; DIGITAL BLACK; DISTRIBUTED SYSTEMS; FORENSIC EVIDENCE; KEYWORD RETRIEVAL; REMOTE AUDITING; TRUSTED COMPUTING PLATFORM;

COMPUTER CRIME; PUBLIC KEY CRYPTOGRAPHY;

MANAGEMENT;

EID: 84875384473     PISSN: 08957177     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.mcm.2012.06.035     Document Type: Article

References (46)

1. Carlin A., Gallegos F. IT audit: a critical business process. IEEE Computer 2007, 40(7):87-89.
2. Müller G., Accorsi R., Höhn S., Sackmann S. Sichere Nutzungskontrolle für mehr Transparenz in Finanzmärkten. Informatik Spektrum 2010, 33(1):3-13.
3. Accorsi R. Business process as a service: chances for remote auditing. IEEE International Computer Software and Applications Conference 2011, 398-403. IEEE Computer Society.
4. R. Teeter, M.A. an Miklos Vasarhelyi, Remote auditing: a research framework, Journal of Emerging Technology in Accounting (2010).
5. Chow R., Golle P., Jakobsson M., Shi E., Staddon J., Masuoka R., Molina J. Controlling data in the cloud: outsourcing computation without outsourcing control. Proceedings of the ACM Workshop on Cloud Computing Security 2009, 85-90. ACM.
6. Mercuri R. On auditing audit trails. Communications of the ACM 2003, 46(1):17-20.
7. Accorsi R. Safe-keeping digital evidence with secure logging protocols: state of the art and challenges. Proceedings the IEEE Conference on Incident Management and Forensics 2009, 94-110. IEEE Computer Society. O. Goebel, R. Ehlert, S. Frings, D. Günther, H. Morgenstern, D. Schadt (Eds.).
8. B. Waters, D. Balfanz, G. Durfee, D. Smetters, Building an encrypted and searchable audit log, in: Proceedings of the 11th Annual Network and Distributed System Security Symposium, 2004.
9. M. Bellare, B. Yee, Forward integrity for secure audit logs, Tech. Rep., University of California, San Diego, Dept. of Computer Science & Engineering, 1997.
10. Lowis L., Accorsi R. On a classification approach for SOA vulnerabilities. Proceedings of the IEEE International Computer Software and Applications Conference 2009, 439-444. IEEE Computer Society.
11. Lowis L., Accorsi R. Finding vulnerabilities in SOA-based business processes. IEEE Transactions on Service Computing 2011, 4(3):230-242.
12. Accorsi R., Wonnemann C., Dochow S. SWAT: a security workflow toolkit for reliably secure process-aware information systems. Conference on Availability, Reliability and Security 2011, 692-697. IEEE.
13. Accorsi R., Wonnemann C. Detective information flow analysis for business processes. Lecture Notes in Informatics 2009, vol. 147:223-224. Springer. W. Abramowicz, L. Macaszek, R. Kowalczyk, A. Speck (Eds.).
14. Accorsi R., Wonnemann C. Strong non-leak guarantees for workflow models. ACM Symposium on Applied Computing 2011, 308-314. ACM.
15. Accorsi R., Wonnemann C., Stocker T. Towards forensic data flow analysis of business process logs. Proceedings the IEEE Conference on Incident Management and Forensics 2011, 94-110. IEEE Computer Society. O. Goebel, R. Ehlert, S. Frings, D. Günther, H. Morgenstern, D. Schadt (Eds.).
16. Accorsi R., Stocker T. On the exploitation of process mining for security audits: the conformance checking case. ACM Symposium on Applied Computing 2012, 1709-1716. ACM Press.
17. Chuvakin A., Peterson G. Logging in the age of web services. IEEE Security and Privacy 2009, 7(3):82-85.
18. R. Accorsi, Automated counterexample-driven audits of authentic system records, Ph.D. Thesis, University of Freiburg, 2008.
19. C. Lonvick, RFC3164: the BSD syslog protocol, request for comments, 2001. http://www.ietf.org/rfc/rfc3164.txt.
20. Accorsi R., Hohl A. Delegating secure logging in pervasive computing systems. Lecture Notes in Computer Science 2006, vol. 3934:58-72. Springer. J. Clark, R. Paige, F. Pollack, P. Brooke (Eds.).
21. Lampson B. A note on the confinement problem. Communications of the ACM 1973, 16(10):613-615.
22. Dolev D., Yao A. On the security of public key protocols. IEEE Transactions on Information Theory 1983, 2(29):198-208.
23. Franklin M. A survey of key evolving cryptosystems. International Journal of Security and Networks 2006, 1(1-2):46-53.
24. Lamport L. Password authentication with insecure communication. Communications of the ACM 1981, 24(11):770-772.
25. Needham R., Schroeder M. Using encryption for authentication in large networks of computers. Communications of the ACM 1978, 21(12):993-999.
26. Abadi M., Needham R. Prudent engineering practice for cryptographic protocols. IEEE Transactions on Software Engineering 1996, 22(1):6-15.
27. Automated validation of Internet security protocols and applications, 2008. http://www.avispa-project.org/.
28. Lowis L., Hohl A. Enabling persistent service links. Proceedings of the International Conference on E-Commerce Technology 2005, 301-306. IEEE Computer Society.
29. Sackmann S., Strüker J., Accorsi R. Personalization in privacy-aware highly dynamic systems. Communications of the ACM 2006, 49(9):32-38.
30. Yum D., Kim J., Lee P., Hong S. On fast verification of hash chains. Lecture Notes in Computer Science 2010, vol. 5985:382-396. Springer. J. Pieprzyk (Ed.).
31. Schneier B., Kelsey J. Security audit logs to support computer forensics. ACM Transactions on Information and System Security 1999, 2(2):159-176.
32. Ma D., Tsudik G. A new approach to secure logging. ACM Transactions on Storage 2009, 5(1):1-21.
33. Reliable syslog. http://security.sdsc.edu/software/sdsc-syslog/.
34. J. Kelsey, J. Callas, Signed syslog messages, IETF Internet Draft, 2005. http://www.ietf.org/internet-drafts/draft-ietf-syslog-sign-16.txt.
35. Syslog-ng web site. http://www.balabit.com/products/syslog_ng/.
36. Accorsi R. On the relationship of privacy and secure remote logging in dynamic systems. IFIP Conference Proceedings 2006, vol. 201:329-339. Springer. S. Fischer-Hübner, K. Rannenberg, L. Yngström, S. Lindskog (Eds.).
37. Stathopoulos V., Kotzanikolaou P., Magkos E. A framework for secure and verifiable logging in public communication networks. Lecture Notes in Computer Science 2006, vol. 4347:273-284. Springer. J. Lopez (Ed.).
38. Chong C., Peng Z., Hartel P. Secure audit logging with tamper-resistant hardware. IFIP Conference Proceedings 2003, vol. 250:73-84. Kluwer. D. Gritzalis, S.D.C. di Vimercati, P. Samarati, S. Katsikas (Eds.).
39. Holt J. Logcrypt: forward security and public verification for secure audit logs. CRIPT 2006, vol. 54:203-211. Australian Computer Society. R. Buyya, T. Ma, R. Safavi-Naini, C. Steketee, W. Susilo (Eds.).
40. Ma D. Practical forward secure sequential aggregate signatures. Proceedings of the ACM Symposium on Information, Computer and Communications Security 2008, 341-352. ACM. M. Abe, V.D. Gligor (Eds.).
41. Curtmola R., Garay J., Kamara S., Ostrovsky R. Searchable symmetric encryption: improved definitions and efficient constructions. ACM Conference on Computer and Communications Security 2006, 79-88. ACM. A. Juels, R. Wright, S.D.C. di Vimercati (Eds.).
42. Boneh D., Franklin M. Identity based encryption from the Weil pairing. SIAM Journal of Computing 2003, 32(3):586-615.
43. Bloom B. Space/time trade-offs in hash coding with allowable errors. Communications of the ACM 1970, 13(7):422-426.
44. W. Xu, D. Chadwick, S. Otenko, A PKI based secure audit web server, in: IASTED Communications, Network and Information, 2005.
45. Kenneally E. Digital logs-proof matters. Digital Investigation 2004, 1(2):94-101.
46. Accorsi R., Stocker T. Automated privacy audits based on pruning of log data. Proceedings of the EDOC International Workshop on Security and Privacy in Enterprise Computing 2008, IEEE.