A central and secured logging data solution for Xen virtual machine

Nguyen Anh Quynh, Yoshiyasu Takefuji

Research output: Chapter in Book/Report/Conference proceedingConference contribution

6 Citations (Scopus)

Abstract

Logging data is a valuable and an important information to reveal the attacker's activities and to recover broken system. Unfortunately, once the attacker successfully penetrates a protected system, he never fails to either modify the logging data, or even worse, delete them to cover his traces. To avoid such a disaster, it is best to keep logging data in another machine by forwarding them to a central logging server. However, this approach has a flaw: while transmitting on network, the data could be illegally sniffed or the traffic might be secretly redirected to a malicious machine. This paper proposes a novel method named Xenlog to secure logging data for systems run on Xen virtual machine: the solution does not use network stack to send data. Experimental and resulted tool proves that this approach is more secure than the traditional solution, while logging process is far more effective (nearly 21 times faster) and more reliable.

Original languageEnglish
Title of host publicationProceedings of the IASTED International Conference on Parallel and Distributed Computing and Networks, as part of the 24th IASTED International Multi-Conference on APPLIED INFORMATICS
Pages218-224
Number of pages7
Publication statusPublished - 2006 Dec 1
EventIASTED International Conference on Parallel and Distributed Computing and Networks, as part of the 24th IASTED International Multi-Conference on APPLIED INFORMATICS - Innsbruck, Austria
Duration: 2006 Feb 142006 Feb 16

Publication series

NameProceedings of the IASTED International Conference on Parallel and Distributed Computing and Networks, as part of the 24th IASTED International Multi-Conference on APPLIED INFORMATICS
Volume2006

Other

OtherIASTED International Conference on Parallel and Distributed Computing and Networks, as part of the 24th IASTED International Multi-Conference on APPLIED INFORMATICS
CountryAustria
CityInnsbruck
Period06/2/1406/2/16

Keywords

  • Central logging
  • Linux
  • Secured logging
  • Xen virtual machine

ASJC Scopus subject areas

  • Engineering(all)

Fingerprint Dive into the research topics of 'A central and secured logging data solution for Xen virtual machine'. Together they form a unique fingerprint.

  • Cite this

    Quynh, N. A., & Takefuji, Y. (2006). A central and secured logging data solution for Xen virtual machine. In Proceedings of the IASTED International Conference on Parallel and Distributed Computing and Networks, as part of the 24th IASTED International Multi-Conference on APPLIED INFORMATICS (pp. 218-224). (Proceedings of the IASTED International Conference on Parallel and Distributed Computing and Networks, as part of the 24th IASTED International Multi-Conference on APPLIED INFORMATICS; Vol. 2006).