论文信息 - A Framework for Secure and Verifiable Logging in Public Communication Networks

A Framework for Secure and Verifiable Logging in Public Communication Networks

In this paper we are focusing on secure logging for public network providers. We review existing security threat models against system logging and we extend these to a new threat model especially suited in the environment of telecommunication network providers. We also propose a framework for secure logging in public communication networks as well as realistic implementations designs, which are more resilient to the identified security threats. A key role to the proposed framework is given to an independent Regulatory Authority, which is responsible to verify the integrity of the log files.

[1] Kent E. Seamons,et al. Logcrypt: Forward Security and Public Verification for Secure Audit Logs , 2005, IACR Cryptol. ePrint Arch..

[2] Mihir Bellare,et al. Forward Integrity For Secure Audit Logs , 1997 .

[3] Samuel T. King,et al. ReVirt: enabling intrusion analysis through virtual-machine logging and replay , 2002, OPSR.

[4] H. Shigeno,et al. Efficient log authentication for forensic computing , 2005, Proceedings from the Sixth Annual IEEE SMC Information Assurance Workshop.

[5] Michael Wiener,et al. Advances in Cryptology — CRYPTO’ 99 , 1999 .

[6] Bruce Schneier,et al. Cryptographic Support for Secure Logs on Untrusted Machines , 1998, USENIX Security Symposium.

[7] Stuart Haber,et al. How to time-stamp a digital document , 1990, Journal of Cryptology.

[8] Brent Waters,et al. Building an Encrypted and Searchable Audit Log , 2004, NDSS.

[9] Kai Rannenberg,et al. Security and Privacy in Dynamic Environments , 2006 .

[10] Rafael Accorsi,et al. On the Relationship of Privacy and Secure Remote Logging in Dynamic Systems , 2006, SEC.

[11] Pieter H. Hartel,et al. Secure Audit Logging with Tamper-Resistant Hardware , 2003, SEC.