On Pseudonymization of Audit Data for Intrusion Detection

14 years 3 months ago

Download ls6-www.informatik.uni-dortmund.de

In multilaterally secure intrusion detection systems (IDS) anonymity and accountability are potentially conﬂicting requirements. Since IDS rely on audit data to detect violations of security policy, we can balance above requirements by pseudonymization of audit data, as a form of reversible anonymization. We discuss previous work in this area and underlying trust models. Instead of relying on mechanisms external to the system, or under the control of potential adversaries, in our proposal we technically bind reidentiﬁcation to a threshold, representing the legal purpose of accountability in the presence of policy violations. Also, we contrast our notion of threshold-based identity recovery with previous approaches and point out open problems.

Joachim Biskup, Ulrich Flegel

Real-time Traffic

Audit Data | DIAU 2000 | Secure Intrusion Detection | Security Privacy | Threshold-based Identity Recovery |

claim paper

Post Info
More Details (n/a)

Added	02 Aug 2010
Updated	02 Aug 2010
Type	Conference
Year	2000
Where	DIAU
Authors	Joachim Biskup, Ulrich Flegel

Comments (0)

Sciweavers

On Pseudonymization of Audit Data for Intrusion Detection

Audit Data | DIAU 2000 | Secure Intrusion Detection | Security Privacy | Threshold-based Identity Recovery |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers