GlobalView: building global view with log files in a distributed/networked system for accountability


Xiao Y., Yue S., Fu B., Ozdemir S.

SECURITY AND COMMUNICATION NETWORKS, vol.7, no.12, pp.2564-2586, 2014 (Journal Indexed in SCI) identifier identifier

  • Publication Type: Article / Article
  • Volume: 7 Issue: 12
  • Publication Date: 2014
  • Doi Number: 10.1002/sec.374
  • Title of Journal : SECURITY AND COMMUNICATION NETWORKS
  • Page Numbers: pp.2564-2586

Abstract

In this work, we will illustrate our attempt to exploit log files that are recorded locally on each node in a distributed system or a wired/wireless network. In order to improve the efficiency of retrieving data, we propose the idea of building a global view of the system with a clustered log-collecting scheme; this would help the monitoring node gain a whole view of the system by building up and maintaining high-level log files. We also introduce an efficient, tamper-evident scheme to detect whether a local flow-net has been deliberately compromised. We provide both simulation results and implementation of the proposed scheme on Emulab, a network testbed. Copyright (c) 2011 John Wiley & Sons, Ltd.