Cargando…
RootLogChain: Registering Log-Events in a Blockchain for Audit Issues from the Creation of the Root
Logging system activities are required to provide credibility and confidence in the systems used by an organization. Logs in computer systems must be secured from the root user so that they are true and fair. This paper introduces RootLogChain, a blockchain-based audit mechanism that is built upon a...
| Autores principales: | , , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
MDPI
2021
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8621924/ https://www.ncbi.nlm.nih.gov/pubmed/34833743 http://dx.doi.org/10.3390/s21227669 |
| _version_ | 1784605573109514240 |
|---|---|
| author | López-Pimentel, Juan Carlos Morales-Rosales, Luis Alberto Monroy, Raúl |
| author_facet | López-Pimentel, Juan Carlos Morales-Rosales, Luis Alberto Monroy, Raúl |
| author_sort | López-Pimentel, Juan Carlos |
| collection | PubMed |
| description | Logging system activities are required to provide credibility and confidence in the systems used by an organization. Logs in computer systems must be secured from the root user so that they are true and fair. This paper introduces RootLogChain, a blockchain-based audit mechanism that is built upon a security protocol to create both a root user in a blockchain network and the first log; from there, all root events are stored as logs within a standard blockchain mechanism. RootLogChain provides security constructs so as to be deployed in a distributed context over a hostile environment, such as the internet. We have developed a prototype based on a microservice architecture, validating it by executing different stress proofs in two scenarios: one with compliant agents and the other without. In such scenarios, several compliant and non-compliant agents try to become a root and register the events within the blockchain. Non-compliant agents simulate eavesdropper entities that do not follow the rules of the protocol. Our experiments show that the mechanism guarantees the creation of one and only one root user, integrity, and authenticity of the transactions; it also stores all events generated by the root within a blockchain. In addition, for audit issues, the traceability of the transaction logs can be consulted by the root. |
| format | Online Article Text |
| id | pubmed-8621924 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2021 |
| publisher | MDPI |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-86219242021-11-27 RootLogChain: Registering Log-Events in a Blockchain for Audit Issues from the Creation of the Root López-Pimentel, Juan Carlos Morales-Rosales, Luis Alberto Monroy, Raúl Sensors (Basel) Article Logging system activities are required to provide credibility and confidence in the systems used by an organization. Logs in computer systems must be secured from the root user so that they are true and fair. This paper introduces RootLogChain, a blockchain-based audit mechanism that is built upon a security protocol to create both a root user in a blockchain network and the first log; from there, all root events are stored as logs within a standard blockchain mechanism. RootLogChain provides security constructs so as to be deployed in a distributed context over a hostile environment, such as the internet. We have developed a prototype based on a microservice architecture, validating it by executing different stress proofs in two scenarios: one with compliant agents and the other without. In such scenarios, several compliant and non-compliant agents try to become a root and register the events within the blockchain. Non-compliant agents simulate eavesdropper entities that do not follow the rules of the protocol. Our experiments show that the mechanism guarantees the creation of one and only one root user, integrity, and authenticity of the transactions; it also stores all events generated by the root within a blockchain. In addition, for audit issues, the traceability of the transaction logs can be consulted by the root. MDPI 2021-11-18 /pmc/articles/PMC8621924/ /pubmed/34833743 http://dx.doi.org/10.3390/s21227669 Text en © 2021 by the authors. https://creativecommons.org/licenses/by/4.0/Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/). |
| spellingShingle | Article López-Pimentel, Juan Carlos Morales-Rosales, Luis Alberto Monroy, Raúl RootLogChain: Registering Log-Events in a Blockchain for Audit Issues from the Creation of the Root |
| title | RootLogChain: Registering Log-Events in a Blockchain for Audit Issues from the Creation of the Root |
| title_full | RootLogChain: Registering Log-Events in a Blockchain for Audit Issues from the Creation of the Root |
| title_fullStr | RootLogChain: Registering Log-Events in a Blockchain for Audit Issues from the Creation of the Root |
| title_full_unstemmed | RootLogChain: Registering Log-Events in a Blockchain for Audit Issues from the Creation of the Root |
| title_short | RootLogChain: Registering Log-Events in a Blockchain for Audit Issues from the Creation of the Root |
| title_sort | rootlogchain: registering log-events in a blockchain for audit issues from the creation of the root |
| topic | Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8621924/ https://www.ncbi.nlm.nih.gov/pubmed/34833743 http://dx.doi.org/10.3390/s21227669 |
| work_keys_str_mv | AT lopezpimenteljuancarlos rootlogchainregisteringlogeventsinablockchainforauditissuesfromthecreationoftheroot AT moralesrosalesluisalberto rootlogchainregisteringlogeventsinablockchainforauditissuesfromthecreationoftheroot AT monroyraul rootlogchainregisteringlogeventsinablockchainforauditissuesfromthecreationoftheroot |