Transaction-Based Pseudonyms in Audit Data for Privacy Respecting Intrusion Detection

Biskup, Joachim; Flegel, Ulrich

doi:10.1007/3-540-39945-3_3

Cited by 24 publications

(27 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In the registration phase, the encryptions are done under the public key belonging to a set of so called audit officers 6 inside the organization, e.g. in the emergency management organization:…”

Section: Registration and Generation Of Pseudonymsmentioning

confidence: 99%

“…Research in this direction is about finding efficient mechanisms and models of operations. Biskup et al propose to use transaction pseudonyms [6] in audit logs and a secret sharing method for the re-identification [5] in case a threshold of detected inappropriate actions is exceeded in the analysis. These concepts are applied within traditional computer security domains like Unix audit logs.…”

Section: Privacy-respecting Audit Log Analysismentioning

confidence: 99%

See 1 more Smart Citation

Multilaterally Secure Ubiquitous Auditing

Weber¹,

Mühlhäuser

2010

Intelligent Networking, Collaborative Systems and Applications

View full text Add to dashboard Cite

Tracking information of individuals is a useful input to many Ubiquitous Computing (UbiComp) applications. Consider the example of a smart emergency management application: once mobile first responders are continuously tracked, a precise and safe coordination of rescue missions is possible, and also mission logs can be created for audit purposes. However, continuously tracking users and storing the data for later use is often in conflict with individual privacy preferences. This may ultimately lead to the non-acceptance and rejection of these new technologies by their users. In order to reconcile privacy and accountability requirements in location tracking systems, we introduce and evaluate the approach of using auditing mechanisms on two levels. We illustrate that, by employing carefully designed cryptographic mechanisms for selective pseudonym linkability based on efficient techniques of secure multiparty computation, it is possible to balance the conflicting interests to a certain extent. Our work, motivated by and applied to smart emergency management systems, is a step towards the realization of multilaterally secure and thus multilaterally acceptable UbiComp systems supporting collaborative work.

show abstract

Section: Registration and Generation Of Pseudonymsmentioning

confidence: 99%

Section: Privacy-respecting Audit Log Analysismentioning

confidence: 99%

Multilaterally Secure Ubiquitous Auditing

Weber¹,

Mühlhäuser

2010

Intelligent Networking, Collaborative Systems and Applications

View full text Add to dashboard Cite

show abstract

“…It was not until 1997 when Sobirey et al first suggested using pseudonyms for privacyenhanced intrusion detection of syslogs [24]. From 2000-2002, Biskup and Flegel extended this work in a series of papers [2], [3], [9].…”

Section: Related Workmentioning

confidence: 99%

“…warning, error, emergencies). 3 In addition to pattern-matching syslog entries for known attack signatures, other examples of suspicious activity found in system syslogs include critical events (system reboots), unsuccessful login attempts, storage overload when a log fills its allocated disk space, and cessation of logging messages (may indicate the logging process has either been deleted or a Trojan logging process installed).…”

Section: Introductionmentioning

confidence: 99%

Outsourcing Security Analysis with Anonymized Logs

Zhang

Borisov

Yurcik

2006

2006 Securecomm and Workshops

View full text Add to dashboard Cite

Abstract-As security monitoring grows both more complicated and more sophisticated, there is an increased demand for outsourcing these tasks to Managed Security Service Providers (MSSPs). However, the core problem of sharing private security logs creates a barrier to the widespread adoption of this business model. In this paper we analyze the logs used for security analysis with the concern of privacy and propose the constraints on anonymization of security monitor logs. We believe if the anonymization solution fulfills the constraints, MSSPs can detect the attacks efficiently and protect privacy simultaneously.

show abstract

“…Existing approaches for pseudonymization [13,12,20] have several drawbacks that pose a major threat to the privacy and confidentiality of stored patient data. Others have not yet been realized for the field of patient related privacy issues [2,5,6,7]. In this paper, we propose a new architecture for the pseudonymization of medical data that provides the following contributions:…”

Section: Introductionmentioning

confidence: 99%

A secure architecture for the pseudonymization of medical data

Riedl

Neubauer

Goluch

et al. 2007

The Second International Conference on Availability, Reliability and Security (ARES'07)

View full text Add to dashboard Cite

As aging and very expensive programs put more pressure on health and social care systems, an increase in the need for electronic healthcare records can be observed, because they promise massive savings and better clinical quality. However, patients and commissioners for data protection have legitimate concerns about the privacy and confidentiality of the stored data. Although the concept of pseudonymization allows an association with a patient only under specified and controlled circumstances, existing approaches have major vulnerabilities. This paper provides a new architecture for the pseudonymization of medical data that combines primary and secondary use in one system and thus provides a solution to vulnerabilities of existing approaches.

show abstract

Transaction-Based Pseudonyms in Audit Data for Privacy Respecting Intrusion Detection

Cited by 24 publications

References 4 publications

Multilaterally Secure Ubiquitous Auditing

Multilaterally Secure Ubiquitous Auditing

Outsourcing Security Analysis with Anonymized Logs

A secure architecture for the pseudonymization of medical data

Contact Info

Product

Resources

About