Secure Logging As a Service-Delegating Log Management to the Cloud

被引：34

作者：

Ray, Indrajit ^{[1
]}

Belyaev, Kirill ^{[1
]}

Strizhov, Mikhail ^{[1
]}

Mulamba, Dieudonne ^{[1
]}

Rajaram, Mariappan ^{[2
]}

机构：

[1] Colorado State Univ, Dept Comp Sci, Ft Collins, CO 80523 USA

[2] Compuware Corp, Detroit, MI 48226 USA

来源：

IEEE SYSTEMS JOURNAL | 2013年 / 7卷 / 02期

关键词：

Cloud computing; logging; privacy; security;

D O I：

10.1109/JSYST.2012.2221958

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Securely maintaining log records over extended periods of time is very important to the proper functioning of any organization. Integrity of the log files and that of the logging process need to be ensured at all times. In addition, as log files often contain sensitive information, confidentiality and privacy of log records are equally important. However, deploying a secure logging infrastructure involves substantial capital expenses that many organizations may find overwhelming. Delegating log management to the cloud appears to be a viable cost saving measure. In this paper, we identify the challenges for a secure cloud-based log management service and propose a framework for doing the same.

引用

页码：323 / 334

页数：12

共 28 条

[11]

Global Internet Freedom Consortium, 2012, FREEGATE

[12]

Herzberg A, 1995, LECT NOTES COMPUT SC, V963, P339

[13]

HOLT J.E., 2006, 2006 AUSTRALASIAN WO, V54, P203

[14]

Kelsey J., 2010, 5848 RFC INT ENG TAS

[15]

Kent K., 1992, NIST SPECIAL PUBLICA, V800-92

[16]

New D., 2001, 3195 RFC INT ENG TAS

[17]

Norvag K., 1997, P 1 E EUR S ADV DAT, P32

[18]

Ostrovsky R., 1991, Proceedings of the Tenth Annual ACM Symposium on Principles of Distributed Computing, P51, DOI 10.1145/112600.112605

[19]

PCI Security Standards Council, 2006, PAYM CARD IND PCI DA

[20]

Rose M., 2001, 3080 RFC INT ENG TAS

← 1 2 3 →