The Design of an Audit Trail Sanitization Tool
Author
Eric A Fisch,Gregory B White,Udo W Pooch
Abstract
This paper discusses the design of a tool that automatically removes
security-sensitive information from intruder activity log files collected
at a compromised site. The sanitization of sensitive information will enable
researchers to further study the log files without further compromising the
security of the affected sites. The paper begins with a brief discussion
of the importance of such a tool and a description of the complete sanitization
process. This follows with an examination of the important design issues of
the sanitizer. The paper concludes with the final design of a sanitizer
for SunOS based intruder activity logs.
Address
College Station, Texas 77843
Institution
Texas A&M University
Publication Date
0000-00-00
Location
A hard-copy of this is in the Papers Cabinet