Title :
FAL: A forensics aware language for secure logging
Author :
Zawoad, Shams ; Mernik, Marjan ; Hasan, Ragib
Author_Institution :
Univ. of Alabama at Birmingham, Birmingham, AL, USA
Abstract :
Trustworthy system logs and application logs are crucial for digital forensics. Researchers have proposed different security mechanisms to ensure the integrity and confidentiality of logs. However, applying current secure logging schemes on heterogeneous formats of logs is tedious. Here, we propose FAL, a domain-specific language (DSL) through which we can apply a secure logging mechanism on any format of logs. Using FAL, we can define log structure, which represents the format of logs and ensures the security properties of a chosen secure logging scheme. This log structure can be later used by FAL to serve two purposes: it can be used to store system logs securely, and it will help application developers for secure application logging by generating required source code.
Keywords :
data integrity; data privacy; digital forensics; specification languages; trusted computing; FAL; application logging; application logs; digital forensics; domain-specific language; forensics aware language; heterogeneous formats; log confidentiality; log integrity; log structure; logging security; source code generation; trustworthy system logs; DSL; Encryption; Indexes; Semantics; Syntactics; Audit Trail; DSL; Digital Forensics; Secure Logging;
Conference_Titel :
Computer Science and Information Systems (FedCSIS), 2013 Federated Conference on
Conference_Location :
Krako??w
