Title :
A framework for business-oriented security audit
Author :
Liu, Lianzhong ; Jiang, Wenli ; Huang, Qiang
Author_Institution :
Sch. of Comput. Sci. & Eng., Beijing Univ. of Aeronaut. & Astronaut., Beijing
Abstract :
Dependency between business and resources that ensure the normal function of the business has increased dramatically in size and complexity. As communication network becomes larger and more complex, the need for advanced correlation between audit alarm and business is becoming urgent. This paper proposes a framework for business-oriented security audit, which bridges the gap between the management of resources and the offer of business for the customers with respect to the audit alarm. Firstly, we classify the audit log and stress on the mechanism of collecting them. Secondly, based on the audit log gathered, we generate audit alarm with event correlation. At last, according to the dependency between business and resource, we map the audit alarm to associated business.
Keywords :
auditing; business communication; security; audit alarm; audit log; business-oriented security audit; communication network; resource management; Algorithm design and analysis; Business communication; Communication networks; Data security; Databases; Information security; Network servers; Operating systems; Stress; Switches;
Conference_Titel :
Industrial Informatics, 2008. INDIN 2008. 6th IEEE International Conference on
Conference_Location :
Daejeon
Print_ISBN :
978-1-4244-2170-1
Electronic_ISBN :
1935-4576
DOI :
10.1109/INDIN.2008.4618082
