xianlaioy / owasp-esapi-java

Automatically exported from code.google.com/p/owasp-esapi-java
Other
0 stars 0 forks source link

Consider tamper resistant audit log #180

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago
(From Kevin Wall)

Built utilities for tamper resistant audit logs.

Schneier and Kelsey have a good paper on how to do this using various crypto 
primitives. The advantage is that once an entry is made in a log file, it is 
possible to use cryptographic primitives to detect if these logs have been 
tampered with in any way. This can be something that is important with 
presenting audit logs as forensics evidence as you can have assurance that the 
logs were not tampered with.

Original issue reported on code.google.com by manico.james@gmail.com on 11 Nov 2010 at 3:10

GoogleCodeExporter commented 9 years ago

Original comment by manico.james@gmail.com on 11 Nov 2010 at 1:54

GoogleCodeExporter commented 9 years ago

Original comment by manico.james@gmail.com on 29 May 2012 at 3:24