In this work we propose a computer platform that aims to unify the tasks of monitoring, diagnosing, error detection, alarm management and intrusion detection associated with the administration of a computer network and related critical services. As main objective, we intend to develop a user-intuitive program that does not require specialized computer skills from the operators in order to assume full responsibility for the system. Open-source solutions were used, whenever possible, namely for server operating systems, application development tools, database engine and integrated Web solution. The project started by studying the existing solutions, exploring their strengths and shortcomings and iteratively defining the specific requirements to be implemented. The development phase was conceptually divided in three different levels: the agents and connectors collecting the data from the different areas being monitored; the database engine, cataloguing the information and the Web Interface (Security Portal) that allows the management of all functionalities and guarantees the operationability of the solution. An alarm management tool should also be developed permitting, according to programmed warnings for certain malfunctions, trigger the warning messages through the predefined medium – E-Mail, SMS (short message service) or IM (instant messaging), using a Unified Messaging (UM) solution. According to the defined specifications, the solution to be implemented was designed and a functional analysis was created. Finally the projected solution was implemented and applied to a case study – the Department of Fisheries Inspection from the General-Directorate of Fisheries and Aquiculture. The preliminary results from the reliability and user-friendliness tests were very positive and a decision was made to move into the production phase. The platform was developed in line with current accessibility requirements and can be operated / consulted by users with disabilities. 1 Currently Head of Computing Services, Santa Maria Hospital, Lisbon.
[1]
Kerry J. Cox.
Managing Security with Snort and IDS Tools
,
2004
.
[2]
Rob Kling,et al.
Security and reliability
,
1991
.
[3]
Carl Rigney,et al.
RADIUS Accounting
,
1997,
RFC.
[4]
Chris Lonvick,et al.
The BSD Syslog Protocol
,
2001,
RFC.
[5]
Peter Saint-Andre,et al.
Extensible Messaging and Presence Protocol (XMPP): Instant Messaging and Presence
,
2004,
RFC.
[6]
Paulo Simões.
Gestão distribuída de redes baseada em tecnologia de agentes móveis
,
2002
.
[7]
Jack Koziol.
Intrusion Detection with Snort
,
2003
.
[8]
Leon Gommans,et al.
Generic AAA Architecture
,
2000,
RFC.
[9]
Allan C. Rubens,et al.
Remote Authentication Dial In User Service (RADIUS)
,
1997,
RFC.
[10]
Allan C. Rubens,et al.
Remote Authentication Dial In User Service (RADIUS)
,
2000,
RFC.