Etalle, S. and Massacci, F. and Yautsiukhin, A.
The Meaning of Logs.
Technical Report TR-CTIT-07-24,
Centre for Telematics and Information Technology University of Twente, Enschede.
Full text available as:
While logging events is becoming increasingly common in computing, in communication and in collaborative work, log systems need to satisfy increasingly challenging (if not conflicting) requirements.Despite the growing pervasiveness of log systems, to date there is no high-level framework which allows one to model a log system and to check whether it meets the requirements it should satisfy.
In this paper we propose a high-level framework for modeling
log systems, and reasoning about them. This framework allows one to give a high-level representation of a log system an to check whether it satisfies given audit and privacy properties which in turn can be expressed in standard logic. In particular, the framework can be used for comparing and assessing log systems. We validate our proposal by formalizing a number of standard log properties and by using it to review a number of existing systems.
|Item Type:||Internal Report (Technical Report)|
|Research Group:||EWI-DIES: Distributed and Embedded Security|
|Research Program:||CTIT-ISTRICE: Integrated Security and Privacy in a Networked World|
|Research Project:||IPID: Integrated Policy-based Intrusion Detection, VRIEND: Value-Based Security Risk Mitigation in Enterprise Networks that are Decentralized|
|Deposited On:||05 April 2007|
Export this item as:
To correct this item please ask your editor
Repository Staff Only: edit this item