A new approach to secure logging-Reference-Cited by-同舟云学术

A new approach to secure logging

Published:2009-03 Issue:1 Volume:5 Page:1-21
ISSN:1553-3077
Container-title:ACM Transactions on Storage
language:en
Short-container-title:ACM Trans. Storage

Author:

Ma Di¹,Tsudik Gene¹

Affiliation:

1. University of California, Irvine

Abstract

The need for secure logging is well-understood by the security professionals, including both researchers and practitioners. The ability to efficiently verify all (or some) log entries is important to any application employing secure logging techniques. In this article, we begin by examining the state of the art in secure logging and identify some problems inherent to systems based on trusted third-party servers. We then propose a different approach to secure logging based upon recently developed Forward-Secure Sequential Aggregate (FssAgg) authentication techniques. Our approach offers both space-efficiency and provable security. We illustrate two concrete schemes—one private-verifiable and one public-verifiable—that offer practical secure logging without any reliance on online trusted third parties or secure hardware. We also investigate the concept of immutability in the context of forward-secure sequential aggregate authentication to provide finer grained verification. Finally we evaluate proposed schemes and report on our experience with implementing them within a secure logging system.

Publisher

Association for Computing Machinery (ACM)

Subject

Hardware and Architecture

Link

https://dl.acm.org/doi/pdf/10.1145/1502777.1502779

Reference21 articles.

1. Bellare M. and Palacio A. 2002. Protecting against key exposure: strongly key-insulated encryption with optimal threshold. In Cryptology ePrint Archive Report 2002/64. Bellare M. and Palacio A. 2002. Protecting against key exposure: strongly key-insulated encryption with optimal threshold. In Cryptology ePrint Archive Report 2002/64.

2. Bellare M. and Yee B. 1997. Forward integrity for secure audit logs. Tech. rep. University of California at San Diego ftp://www.cs.ucsd.edu/pub/bsq/pub/fi.ps. Bellare M. and Yee B. 1997. Forward integrity for secure audit logs. Tech. rep. University of California at San Diego ftp://www.cs.ucsd.edu/pub/bsq/pub/fi.ps.

3. Verifiable audit trails for a versioning file system

4. Chong C. Peng Z. and Hartel P. 2002. Secure audit logging with tamper resistant hardware. In Technical Rep. TR-CTIT-02-29 Centre for Telematics and Information Technology Univ. Twente The Netherlands. Chong C. Peng Z. and Hartel P. 2002. Secure audit logging with tamper resistant hardware. In Technical Rep. TR-CTIT-02-29 Centre for Telematics and Information Technology Univ. Twente The Netherlands.

Cited by 91 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Privacy-preserving fair outsourcing polynomial computation without FHE and FPR;Computer Standards & Interfaces;2025-01

2. Synchronized Aggregate Signature Under Standard Assumption in the Random Oracle Model;Lecture Notes in Computer Science;2024

3. Trusted Auditing of Data Operation Behaviors in Cloud based on Blockchain and TEE;2023 IEEE Intl Conf on Parallel & Distributed Processing with Applications, Big Data & Cloud Computing, Sustainable Computing & Communications, Social Computing & Networking (ISPA/BDCloud/SocialCom/SustainCom);2023-12-21

4. DASLog: Decentralized Auditable Secure Logging for UAV Ecosystems;IEEE Internet of Things Journal;2023-12-01

5. LAVA: Log Authentication and Verification Algorithm;Digital Threats: Research and Practice;2023-09-30