论文信息 - Anonymizing log management process for secure logging in the cloud

Anonymizing log management process for secure logging in the cloud

Log files helps cyber forensic process in inquiring and seizing computer, obtaining electronic evidence for criminal investigations and maintaining computer records for the federal rules of evidence. So it can be said that logging is closely related to Forensic Computing. To make the logs permissible for the use in court, there is a stipulation to prove that the logs have not been modified after being generated. Moreover, since the logs contain private information, they must be protected strictly. Therefore a secure logging scheme that ensures the integrity and confidentiality of the logs is needed. And, deploying a secure logging infrastructure involves ample capital expenses that many organizations may find devastating. Delegating log management to the cloud appears to be a feasible cost saving measure. The challenges for a secure cloud-based log management service are identified and Homomorphic Encryption Scheme is proposed for doing the same.

J. Ramya Rajalakshmi | M. Rathinraj | M. Braveen

[1] Kashif Munir,et al. FRAMEWORK FOR SECURE CLOUD COMPUTING , 2013, CloudCom 2013.

[2] S. Vidya,et al. Secured Personal Health Records Transactions Using Homomorphic Encryption In Cloud Computing , 2012 .

[3] Ahmed E. Youssef,et al. A Framework for A Framework for A Framework for A Framework for SSSSeeeeccccure Cloud ure Cloud ure Cloud ure Cloud ComputingComputingComputingComputing , 2012 .

[4] Cristina L. Abad,et al. Log correlation for intrusion detection: a proof of concept , 2003, 19th Annual Computer Security Applications Conference, 2003. Proceedings..

[5] Bernie Lantz,et al. LOCKING DOWN LOG FILES: ENHANCING NETWORK SECURITY BY PROTECTING LOG FILES , 2006 .

[6] Jennifer Neville,et al. Structured Comparative Analysis of Systems Logs to Diagnose Performance Problems , 2012, NSDI.

[7] Caroline Fontaine,et al. A Survey of Homomorphic Encryption for Nonspecialists , 2007, EURASIP J. Inf. Secur..

[8] Indrajit Ray,et al. Secure Logging as a Service—Delegating Log Management to the Cloud , 2013, IEEE Systems Journal.

[9] Noorul Islam,et al. IEEE INTERNATIONAL CONFERENCE ON CIRCUIT, POWER AND COMPUTING TECHNOLOGIES , 2015 .

[10] Mohamed Saleh,et al. Analyzing multiple logs for forensic evidence , 2007, Digit. Investig..

[11] H. Shigeno,et al. A secure logging scheme for Forensic Computing , 2004, Proceedings from the Fifth Annual IEEE SMC Information Assurance Workshop, 2004..