Correct Audit Logging in Concurrent Systems

Authors

Chadi El Kari, University of the PacificFollow
Sepehr Amir-Mohammadian, University of the PacificFollow

Department

Computer Science

Document Type

Article

Publication Title

Electronic Notes in Theoretical Computer Science

ISSN

1571-0661

Volume

351

Issue

15

DOI

10.1016/j.entcs.2020.08.007

First Page

115

Last Page

141

Publication Date

Fall 1-1-2020

Abstract

Audit logging provides post-facto analysis of runtime behavior for different purposes, including error detection, amelioration of system operations, and the establishment of security in depth. This necessitates some level of assurance on the quality of the generated audit logs, i.e., how well the audit log represents the events transpired during the execution. Information-algebraic techniques have been proposed to formally specify this relation and provide a framework to study correct audit log generation in a provable fashion. However, previous work fall short on how to guarantee this property of audit logging in concurrent environments. In this paper, we study an implementation model in a concurrent environment. We propose an algorithm that instruments a concurrent system according to a formal specification of audit logging requirements, so that any instrumented concurrent system guarantees correct audit log generation. As an application, we consider systems with microservices architecture, where logging an event by a microservice is conditioned on the occurrence of a collection of events that take place in other microservices of the system.

Recommended Citation

El Kari, C., & Amir-Mohammadian, S. (2020). Correct Audit Logging in Concurrent Systems. Electronic Notes in Theoretical Computer Science, 351(15), 115–141. DOI: 10.1016/j.entcs.2020.08.007
https://scholarlycommons.pacific.edu/soecs-facarticles/124