Trustworthy Log Reconciliation for Distributed Virtual Organisations

Secure management of logs in an organisational grid environment is often considered a task of low priority. However, it must be rapidly upgraded when the logs have security properties in their own right. We present several use cases where log integrity and confidentiality are essential, and propose a log reconciliation architecture in which both are ensured. We use a combination of trusted computing and virtualization to enable blind log analysis , allowing users to see the results of legitimate queries, while still withholding access to privileged raw data.

[1]  Brian Tierney,et al.  NetLogger: A Toolkit for Distributed System Performance Tuning and Debugging , 2003, Integrated Network Management.

[2]  Michel Daydé,et al.  High Performance Computing for Computational Science - VECPAR 2006, 7th International Conference, Rio de Janeiro, Brazil, June 10-13, 2006, Revised Selected and Invited Papers , 2007, VECPAR.

[3]  Mark Slaymaker,et al.  Towards secure Grid-enabled healthcare: Research Articles , 2005 .

[4]  Andrew C. Simpson,et al.  Towards secure Grid‐enabled healthcare , 2005, Softw. Pract. Exp..

[5]  Vern Paxson,et al.  A high-level programming environment for packet trace anonymization and transformation , 2003, SIGCOMM '03.

[6]  Andrew C. Simpson,et al.  On tracker attacks in health grids , 2006, SAC.

[7]  Wolfgang Emmerich,et al.  The monitorability of service-level agreements for application-service provision , 2007, WOSP '07.

[8]  J. Leake,et al.  APEL: An implementation of Grid accounting using R-GMA , 2005 .

[9]  Andrew Warfield,et al.  Xen and the art of virtualization , 2003, SOSP '03.

[10]  Vitaly Shmatikov,et al.  Privacy-Preserving Sharing and Correlation of Security Alerts , 2004, USENIX Security Symposium.

[11]  Paul England,et al.  Practical Techniques for Operating System Attestation , 2008, TRUST.

[12]  Jun Ho Huh,et al.  Trusted Logging for Grid Computing , 2008, 2008 Third Asia-Pacific Trusted Infrastructure Technologies Conference.

[13]  Ahmad-Reza Sadeghi,et al.  Trusted Computing - Challenges and Applications, First International Conference on Trusted Computing and Trust in Information Technologies, Trust 2008, Villach, Austria, March 11-12, 2008, Proceedings , 2008, TRUST.

[14]  Ahmad-Reza Sadeghi,et al.  Property-based attestation for computing platforms: caring about properties, not mechanisms , 2004, NSPW '04.

[15]  Rosario M. Piro,et al.  An economy-based accounting infrastructure for the datagrid , 2003, Proceedings. First Latin American Web Congress.

[16]  Vicente Hernández,et al.  Distributed General Logging Architecture for Grid Environments , 2006, VECPAR.

[17]  Andrew Martin Trusted Delegation for Grid Computing , 2006 .