Summarizing Audit Trails in the Aeolus Security Platform

Download: pdf.

“Summarizing Audit Trails in the Aeolus Security Platform” by Wissam Jarjoui. Masters thesis, MIT, (Cambridge, MA, USA), Sep. 2012.

Abstract

Aeolus is a programming platform that supports the development of secure applications that preserve the confidentiality of information entrusted to them. An important part of the Aeolus platform is an auditing subsystem that maintains a log in which it stores information about every security related event that occurs while applications run. The log allows later analysis to determine whether the security policies of the application have been followed.

For an Aeolus user, analyzing an Aeolus event log can prove to be a daunting task, especially when this log grows to include millions of records. Similarly, storing such an event log can be very costly. The system I present in this thesis provides an interface that allows the creation of user-defined summaries of the Aeolus audit trails, as well as marking of events in the log for future archiving or deletion. Our system makes it easier to analyze the Aeolus event log and less costly to store events of interest. This is done through the use of a QuerySystem and SummaryObjects. I present the system in the context of a sample application based on the financial management service www.mint.com. The system is an extension to the Aeolus library; it is implemented in Java code and uses PostgreSQL 9.0 as its primary database.

Download: pdf.

BibTeX entry:

@mastersthesis{wjarjoui12:summarizing_audit_trails,
   author = {Wissam Jarjoui},
   title = {Summarizing Audit Trails in the Aeolus Security Platform},
   school = {MIT},
   address = {Cambridge, MA, USA},
   month = sep,
   year = {2012}
}

Also see all authors, all publications by date, and all publications by topic.

Programming Methodology Group