An Audit Log Protection Mechanism Based on Security Chip

  • Guan WangEmail author
  • Ziyi Wang
  • Jian Sun
  • Jun Zhou
Conference paper
Part of the Lecture Notes in Computer Science book series (LNCS, volume 9565)


Audit logs can be used to detect the intrusion behavior. So it has become the main target of attack invaders. The existing technologies of logging protection mainly depend on software and have some inherent defects. The actual demand from this, presents an audit logging protection mechanism based on security chip, to provide hardware protection when the log is stored and accessed. Introduction of the security chip makes the audit log to store and access are in the trusted environment, to ensure the confidentiality and integrity of the log.


Log security Security chip Trust computing 


  1. 1.
    Kelsey, J., Callas, J.: syslog-sign Protocol[EB/OL]. Accessed 1 January 2002
  2. 2.
    Hommes, S., State, R., Engel, T.: A distance-based method to detect anomalous attributes in log files. In: 2012 IEEE Network Operations and Management Symposium (NOMS). IEEE (2012)Google Scholar
  3. 3.
    Xiaofeng, C., Lijuan, Ma., Dengguo, F.: Security audit log based on trusted platform. Comput. Res. Dev. 43(Suppl), 152–156 (2006)Google Scholar
  4. 4.
    Wujiuxin, A.: Reserch on technique of key management on trusted computing cryptographic support platform. J. Beijing Inf. Sci. Technol. Univ. 24, 92–96 (2009)Google Scholar

Copyright information

© Springer International Publishing Switzerland 2016

Authors and Affiliations

  1. 1.College of ComputerBeijing University of TechnologyBeijingChina
  2. 2.Beijing Key Laboratory of Trusted ComputingBeijingChina

Personalised recommendations