Apache Audit Capability Development - PowerPoint PPT Presentation

1 / 12

About This Presentation

Title:

Apache Audit Capability Development

Description:

Design Goals. Short term: (This Iteration) Identify program flow in Apache. ... Extendible & robust design. Addition of new audit events. Can be fine tuned for ... – PowerPoint PPT presentation

Number of Views:50

Avg rating:3.0/5.0

Slides: 13

Provided by: ssssarat

Category:

Tags: apache | audit | capability | design | development

Transcript and Presenter's Notes

Title: Apache Audit Capability Development

1
Apache Audit CapabilityDevelopment

Design

2
Overview

Motivation
Design Goals
Challenges
Architecture
Design Choices
Conclusion

3
Motivation

Auditing (Required for web servers because )
Web Servers make their own security decisions.
Detect occurrence of an attack.
Detect security policy mis-configuration.
Apache Most popular web server
Powers 40 million sites,70 of all web sites.
Source Netcraft Survey Feb 2005.
BSM De facto standard for audit data.

4
Design Goals

Short term (This Iteration)
Identify program flow in Apache.
Audit basic events using Suns BSM format.
Long term (Future Iterations)
Identify the decision points in Apache.
Capture and Audit all key decision points.

5
Design Challenges

Interfacing with two complicated systems. (Apache
and Sun BSM)
Impact
Apache Intricate? Steep learning curve.
Suns BSM Undocumented ? Need for
experimentation.

6
Architecture

Audit Index module.
Collection of Auditors.
Auditors Collect relevant data for an audit
event.
Audit Receptor module.
Miniature auditing server.
Receives audit package from auditors and
transfers to Encoder.
Audit Encoder module.
Encodes audit data into conformable format.
Makes System call to place data into audit trail.

7
The Big Picture
8
Data Flow
9
Design Choices (Why we did it like this?)

Index module auditors list
Extendible design.
Forking child processes (for Encoder module)
Avoid blocking on system calls.
Process Vs. Thread model
Process model conforms with Apaches model.
UDP (User Datagram Protocol) for audit package
transfer.
Less overhead than TCP.

10
Wrapping up

Our Project augments Apache Web server with audit
capability.
Features
Extendible robust design
Addition of new audit events.
Can be fine tuned for performance.
Maintaining a pool of encoder processes.
Provision for future configuration.
E.g.. Certain class of events are audited.

11
Thanks!!!

Team
Dr. Antón and Dr. Earp
Project Sponsors from McAfee
Mr. Mark Feldman
Mr. Pete Dinsmore
Dr. Erik Mettala
Audience

12
Questions

Write a Comment

User Comments (0)

About PowerShow.com

Recommended Relevance Latest Highest Rated Most Viewed

Sort by:

Related More from user

CrystalGraphics Presentations

World's Best PowerPoint Templates PowerPoint PPT Presentation

World's Best PowerPoint Templates - CrystalGraphics offers more PowerPoint templates than anyone else in the world, with over 4 million to choose from. Winner of the Standing Ovation Award for “Best PowerPoint Templates” from Presentations Magazine. They'll give your presentations a professional, memorable appearance - the kind of sophisticated look that today's audiences expect. Boasting an impressive range of designs, they will support your presentations with inspiring background photos or videos that support your themes, set the right mood, enhance your credibility and inspire your audiences.

CrystalGraphics 3D Character Slides for PowerPoint PowerPoint PPT Presentation

CrystalGraphics 3D Character Slides for PowerPoint - CrystalGraphics 3D Character Slides for PowerPoint

Chart and Diagram Slides for PowerPoint PowerPoint PPT Presentation

Chart and Diagram Slides for PowerPoint - Beautifully designed chart and diagram s for PowerPoint with visually stunning graphics and animation effects. Our new CrystalGraphics Chart and Diagram Slides for PowerPoint is a collection of over 1000 impressively designed data-driven chart and editable diagram s guaranteed to impress any audience. They are all artistically enhanced with visually stunning color, shadow and lighting effects. Many of them are also animated. And they’re ready for you to use in your PowerPoint presentations the moment you need them. – PowerPoint PPT presentation

Related Presentations

User Experience Research for Open Software Developers PowerPoint PPT Presentation

User Experience Research for Open Software Developers - There aren't enough Open Source UI Designers. Usability can be ... UE Research and User Experience development in Open Source software is in its infancy ... | PowerPoint PPT presentation | free to view

Beginners Guide To Improving An Organisations WebSphere Capability Rick Smith, WUG UK PowerPoint PPT Presentation

Beginners Guide To Improving An Organisations WebSphere Capability Rick Smith, WUG UK - ... key learnings & prevent from repeating in someone else's project (or yours! ... for defects & change in requirements; ClearQuest good, but there are free tools. ... | PowerPoint PPT presentation | free to view

Building Security Into Your SDLC Methodology PowerPoint PPT Presentation

Building Security Into Your SDLC Methodology - Applications need to match the maturity of Infrastructure components ' ... Ouncelabs - Ounce Labs helps our customers manage their software risk across the ... | PowerPoint PPT presentation | free to view

'NET vs J2EE A Comparative Analysis PowerPoint PPT Presentation

'NET vs J2EE A Comparative Analysis - Open standards such as XML and SOAP and the focus on communication among ... Security must be sure to perform strict audit and apply all updates. Knowledge Capital ... | PowerPoint PPT presentation | free to view

Integrating IT Security into the System Development Life Cycle (SDLC) PowerPoint PPT Presentation

Integrating IT Security into the System Development Life Cycle (SDLC) - What we Found during Y2K. Certification and Accreditation. What is the SDLC? ... (What we learned from Y2K) Required Documentation Findings. Software Program Rarely ... | PowerPoint PPT presentation | free to view

Security Monitoring Thru Log Analysis PowerPoint PPT Presentation

Security Monitoring Thru Log Analysis - usr/bin/t0x5mm (I can't remember the exact name) 'ls' the file, nothing showed ... Write once read many (WORM) is good, but searching capability is even more important ... | PowerPoint PPT presentation | free to view

60564 Survey PowerPoint PPT Presentation

60564 Survey - Host-based IDS. uses log files and system's auditing agents ... It is an IDS developed based on STAT framework. ... standalone Apache. Apache monitored by WebSTAT ... | PowerPoint PPT presentation | free to view

Presented by: Mark Hendricks PowerPoint PPT Presentation

Presented by: Mark Hendricks - Based on LDAP and Kerberos. Kerberos prepares for Single Sign-On. Kerberos. MIT vs. Microsoft ... Misc. Apache Auth. Future. Portal. Guest Accounts. Meta ... | PowerPoint PPT presentation | free to view

Web Services Products and Tools PowerPoint PPT Presentation

Web Services Products and Tools - Tivoli Access Manager is a policy-based access control solution. ... Apache Axis: Stylus Studio uses Apache Axis to query web services for exploring, ... | PowerPoint PPT presentation | free to view

Grid Security for Site Authorization in EDG VOMS, Java Security and LCMAPS PowerPoint PPT Presentation

Grid Security for Site Authorization in EDG VOMS, Java Security and LCMAPS - Based on Apache Tomcat Catalina servlet container ... Grid jobs and storing files are UNIX based ... Local UNIX groups based on VOMS group membership and roles ... | PowerPoint PPT presentation | free to view

Security Auditing Course Development PowerPoint PPT Presentation

Security Auditing Course Development - By average, every 20 minutes, one unpatched machine is compromised ... Nmap, Nessus, nikto, firewalk, cheops-ng, tripwire, windows' tools, Linux/Univ ... | PowerPoint PPT presentation | free to view

Grid Computing and the Globus Toolkit PowerPoint PPT Presentation

Grid Computing and the Globus Toolkit - Sharing always conditional: issues of trust, policy, negotiation, payment, ... Glued together by... Application development. System integration. 12 ... | PowerPoint PPT presentation | free to view

GemStoneJ 3'0 Objects Across the Enterprise PowerPoint PPT Presentation

GemStoneJ 3'0 Objects Across the Enterprise - Browsers or Java clients. GemStone/J. CORBA. JDBC. CORBA. Distributed. JavaBeans. Web Server ... servers and operating systems (Netscape, Microsoft IIS, Apache) ... | PowerPoint PPT presentation | free to view

The Apache Cocoon Project PowerPoint PPT Presentation

The Apache Cocoon Project - Mix and match java components in a pipeline. interacts with many data sources, ... Workflow events such as publishing or deactivating a page can be scheduled. ... | PowerPoint PPT presentation | free to view

Open Grid Computing EnvironmentsGateways Tutorial PowerPoint PPT Presentation

Open Grid Computing EnvironmentsGateways Tutorial - System Testing: We use Apache JMeter to verify portal builds function correctly. ... var='proxyEntry' id='proxyTable' h:column f:facet name='header' ... | PowerPoint PPT presentation | free to view

Spring: Whats it all about PowerPoint PPT Presentation

Spring: Whats it all about - Starting goal of Spring (from 2002) was to help to reduce the complexity of J2EE development ... Creation of objects using new or from factory methods ... | PowerPoint PPT presentation | free to view

The Open Grid Computing Environments Project PowerPoint PPT Presentation

The Open Grid Computing Environments Project - Grid tag libraries are built using JSF custom component development techniques ... Build system (recently revised) is designed to build everything in one command. ... | PowerPoint PPT presentation | free to view

GBCN Team Advantages In Managing Its IP PowerPoint PPT Presentation

GBCN Team Advantages In Managing Its IP - The GBCN Team have known each other more than ten years, besides working closely on our technology development. The Team has extraordinary telecommunications ... | PowerPoint PPT presentation | free to view

Ecommerce Website Development PowerPoint PPT Presentation

Ecommerce Website Development - KETU is a Software, Ecommerce and Web development company which provides quality and cost effective solutions for all sizes of enterprises. http://www.ketusoftware.com | PowerPoint PPT presentation | free to view

Diapositiva 1 PowerPoint PPT Presentation

Diapositiva 1 - ... Core Hiper Center POS Hiper Center SWITCH Hiper Center Gateway Hiper Center SECURITY Cajero Cobrador Hiper Teller Correspondent Banking ... Solution Development ... | PowerPoint PPT presentation | free to view

PowerPoint PPT Presentation

- Title: Consultancy for IT Production Management for SMEs Author: Dennis Adams Last modified by: Dennis Adams Created Date: 9/9/2004 10:13:33 AM Document presentation ... | PowerPoint PPT presentation | free to view

Apache security - Improving the security of your web server by breaking into it PowerPoint PPT Presentation

Apache security - Improving the security of your web server by breaking into it - Apache security - Improving the security of your web server by breaking into it A presentation by Sebastian Wolfgarten (sebastian@wolfgarten.com) | PowerPoint PPT presentation | free to view

OASIS PI Meeting PowerPoint PPT Presentation

OASIS PI Meeting - OASIS PI Meeting HACQIT FW To ... attack modeling, forensics, ... to do bad things such as modifying O/S library or registry or executing programs Response ... | PowerPoint PPT presentation | free to view

Best Grant Management Software PowerPoint PPT Presentation

Best Grant Management Software - A Grant management software supports the entire grant-seeking and execution process, including collecting, reviewing grant applications, and managing grant-making projects. Fibi is one of the best web-based platforms that provides grant management services such as grant calls, proposal development, and pre & post-award activities. Fibi streamlines the entire grants management lifecycle in one secure system. Visit for more information: https://www.fibiweb.com/grants-management/ | PowerPoint PPT presentation | free to view

Best Grant Management Software - Fibi PowerPoint PPT Presentation

Best Grant Management Software - Fibi - Fibi is a grants management software which facilitates easy proposal development and validation, internal and external review and smooth securing of awards. | PowerPoint PPT presentation | free to view

Best Research Management Software - Fibi PowerPoint PPT Presentation

Best Research Management Software - Fibi - Fibi is a comprehensive solution simplifying research administration and compliance needs of universities and research institutions globally. | PowerPoint PPT presentation | free to view