Summarizing Audit Trails in the Aeolus Security Platform


Abstract
 
Aeolus is a programming platform that supports the development of secure applications that preserve the con_dentiality of information entrusted to them. An important part of the Aeolus platform is an auditing subsystem that maintains a log in which it stores information about every security related event that occurs while applications run. The log allows later analysis to determine whether the security policies of the application have been followed.
 
For an Aeolus user, analyzing an Aeolus event log can prove to be a daunting task, especially when this log grows to include millions of records. Similarly, storing such an event log can be very costly. The system I present in this thesis provides an interface that allows the creation of user-de_ned summaries of the Aeolus audit trails, as well as marking of events in the log for future archiving or deletion. Our system makes it easier to analyze the Aeolus event log and less costly to store events of interest. This is done through the use of a QuerySystem and SummaryObjects. I present the system in the context of a sample application based on the financial management service www.mint.com. The system is an extension to the Aeolus library; it is implemented in Java code and uses PostgreSQL 9.0 as its primary database.
 
Author:
Jarjoui Wissam
 
Date: September, 2012
 
Full text of Master Thesis:
 

0 yorum: