Usable Privacy-Aware Logging for Unstructured Log Entries

2016 11th International Conference on Availability, Reliability and Security (ARES) Pub Date : 2016-08-31 DOI:10.1109/ARES.2016.1

Christof Rath

{"title":"Usable Privacy-Aware Logging for Unstructured Log Entries","authors":"Christof Rath","doi":"10.1109/ARES.2016.1","DOIUrl":null,"url":null,"abstract":"Log files are a basic building block of computer systems. They typically contain sensitive data, for example, information about the internal structure of a service and its users. Additionally, log records are usually unstructured in the sense that sensitive data will not occur in every entry and not always occur at defined positions within a record. To mitigate the threat of illicit access to log files, we propose a flexible framework for the creation of privacy-preserving log records. A crucial step is the annotation of sensitive data, by using arbitrary labels, during the development of a system. These labels are mapped to redaction filters to form a redaction policy. Thus, we can create two parallel log streams. One log stream contains fully redacted log entries. It, hence, does not contain any sensitive information and is intended for everyday use. The second stream contains the original entires. Here, confidentiality must be ensured. Our framework fosters privacy by default principles and can support selective disclosure of relevant data. We developed an implementation of our solution for logback, one of the major logging frameworks in Java, and successfully evaluated its applicability.","PeriodicalId":216417,"journal":{"name":"2016 11th International Conference on Availability, Reliability and Security (ARES)","volume":"122 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-08-31","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"6","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 11th International Conference on Availability, Reliability and Security (ARES)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ARES.2016.1","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 6

Abstract

Log files are a basic building block of computer systems. They typically contain sensitive data, for example, information about the internal structure of a service and its users. Additionally, log records are usually unstructured in the sense that sensitive data will not occur in every entry and not always occur at defined positions within a record. To mitigate the threat of illicit access to log files, we propose a flexible framework for the creation of privacy-preserving log records. A crucial step is the annotation of sensitive data, by using arbitrary labels, during the development of a system. These labels are mapped to redaction filters to form a redaction policy. Thus, we can create two parallel log streams. One log stream contains fully redacted log entries. It, hence, does not contain any sensitive information and is intended for everyday use. The second stream contains the original entires. Here, confidentiality must be ensured. Our framework fosters privacy by default principles and can support selective disclosure of relevant data. We developed an implementation of our solution for logback, one of the major logging frameworks in Java, and successfully evaluated its applicability.

查看原文本刊更多论文

可用于非结构化日志条目的隐私感知日志

日志文件是计算机系统的基本组成部分。它们通常包含敏感数据，例如，关于服务及其用户的内部结构的信息。此外，日志记录通常是非结构化的，因为敏感数据不会出现在每个条目中，也不会总是出现在记录中的定义位置。为了减轻非法访问日志文件的威胁，我们提出了一个灵活的框架来创建保护隐私的日志记录。在系统开发过程中，关键的一步是通过使用任意标签对敏感数据进行注释。这些标签被映射到编校过滤器，以形成编校策略。因此，我们可以创建两个并行日志流。一个日志流包含完全编校的日志条目。因此，它不包含任何敏感信息，供日常使用。第二个流包含原始内容。在这里，必须保证保密。我们的框架通过默认原则促进隐私，并支持选择性披露相关数据。我们为logback (Java中主要的日志框架之一)开发了一个解决方案的实现，并成功地评估了它的适用性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2016 11th International Conference on Availability, Reliability and Security (ARES)

自引率

0.00%

发文量