USENIX Conference Policies
Piranha Audit: Kernel Enhancements And Utilities To Improve Audit/Logging
This paper presents a mechanism to enrich logging as required in TCSEC [1] document to detect and stop possible intrusions based on typical attacks and to protect the sensible audit data from deletion/modification even in root compromise situation. After installing Piranha Audit, administrators will have a solid infrastructure for improving security and resistance to penetration, with only modest performance penalties. We present experimental results of the advantages of this solution and the performance impact of the mechanism.
BibTeX
@inproceedings {271200,
author = {Vincenzo Cutello and Emilio Mastriani and Francesco Pappalardo},
title = {Piranha Audit: Kernel Enhancements And Utilities To Improve {Audit/Logging}},
booktitle = {4th Annual Linux Showcase \& Conference (ALS 2000)},
year = {2000},
address = {Atlanta, GA },
url = {https://www.usenix.org/conference/als-2000/piranha-audit-kernel-enhancements-and-utilities-improve-auditlogging},
publisher = {USENIX Association},
month = oct
}
author = {Vincenzo Cutello and Emilio Mastriani and Francesco Pappalardo},
title = {Piranha Audit: Kernel Enhancements And Utilities To Improve {Audit/Logging}},
booktitle = {4th Annual Linux Showcase \& Conference (ALS 2000)},
year = {2000},
address = {Atlanta, GA },
url = {https://www.usenix.org/conference/als-2000/piranha-audit-kernel-enhancements-and-utilities-improve-auditlogging},
publisher = {USENIX Association},
month = oct
}