M. Schaefer, B. Hubbard, D. Sterne, T. Haley, J. McAuliffe, D. Wolcott
{"title":"审计:对可信数据库管理系统的相关贡献","authors":"M. Schaefer, B. Hubbard, D. Sterne, T. Haley, J. McAuliffe, D. Wolcott","doi":"10.1109/CSAC.1989.81055","DOIUrl":null,"url":null,"abstract":"Summary form only given. An ongoing study of audit issues in the context of trusted database management systems (TDBMSs) is discussed. The study consists of a survey of the state of the art, an analysis of issues raised, and an assessment of future relevant research. The scope of the study is broad, and includes a variety of security policies and TDBMS architectures intended for commercial and defense applications. Issues of interest have included those associated with capture, storage, protection, reduction, and analysis of audit data. The study is based on extensive interviews with a number of researchers and product development groups and an examination of audit in its historical and trusted systems contexts. The authors have found that little guidance is provided for either what needs to be audited in TDBMS contexts or when, how, or even where audit data should be captured or recorded. They have found that audit objectives and implied requirements may be specific to each application and security policy. It has also been found that surprisingly little attention has been given in practice to the analysis of TDBMS audit data.<<ETX>>","PeriodicalId":284420,"journal":{"name":"[1989 Proceedings] Fifth Annual Computer Security Applications Conference","volume":"23 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"1989-12-04","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":"{\"title\":\"Auditing: a relevant contribution to trusted database management systems\",\"authors\":\"M. Schaefer, B. Hubbard, D. Sterne, T. Haley, J. McAuliffe, D. Wolcott\",\"doi\":\"10.1109/CSAC.1989.81055\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Summary form only given. An ongoing study of audit issues in the context of trusted database management systems (TDBMSs) is discussed. The study consists of a survey of the state of the art, an analysis of issues raised, and an assessment of future relevant research. The scope of the study is broad, and includes a variety of security policies and TDBMS architectures intended for commercial and defense applications. Issues of interest have included those associated with capture, storage, protection, reduction, and analysis of audit data. The study is based on extensive interviews with a number of researchers and product development groups and an examination of audit in its historical and trusted systems contexts. The authors have found that little guidance is provided for either what needs to be audited in TDBMS contexts or when, how, or even where audit data should be captured or recorded. They have found that audit objectives and implied requirements may be specific to each application and security policy. It has also been found that surprisingly little attention has been given in practice to the analysis of TDBMS audit data.<<ETX>>\",\"PeriodicalId\":284420,\"journal\":{\"name\":\"[1989 Proceedings] Fifth Annual Computer Security Applications Conference\",\"volume\":\"23 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"1989-12-04\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"3\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"[1989 Proceedings] Fifth Annual Computer Security Applications Conference\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/CSAC.1989.81055\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"[1989 Proceedings] Fifth Annual Computer Security Applications Conference","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CSAC.1989.81055","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Auditing: a relevant contribution to trusted database management systems
Summary form only given. An ongoing study of audit issues in the context of trusted database management systems (TDBMSs) is discussed. The study consists of a survey of the state of the art, an analysis of issues raised, and an assessment of future relevant research. The scope of the study is broad, and includes a variety of security policies and TDBMS architectures intended for commercial and defense applications. Issues of interest have included those associated with capture, storage, protection, reduction, and analysis of audit data. The study is based on extensive interviews with a number of researchers and product development groups and an examination of audit in its historical and trusted systems contexts. The authors have found that little guidance is provided for either what needs to be audited in TDBMS contexts or when, how, or even where audit data should be captured or recorded. They have found that audit objectives and implied requirements may be specific to each application and security policy. It has also been found that surprisingly little attention has been given in practice to the analysis of TDBMS audit data.<>
![[1989 Proceedings] Fifth Annual Computer Security Applications Conference](/Content/css/sci/img/zetp.jpg)
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
