PAPERS
THE FOURTH INTERNATIONAL CONFERENCE ON FORENSIC COMPUTER SCIENCE - ICoFCS 2009
Online ISBN: 978-85-65069-03-8, Print ISSN: 1980-1114, pp 53-59
DOI: 10.5769/C2009007 and http://dx.doi.org/10.5769/C2009007
Projeto MAAOS - mecanismo para monitoramento de sistemas operacionais e auditoria para detecção de vestígios
By Vitor Teixeira Costa, and George Soares Fleury
To download the paper, click here.
Online ISBN: 978-85-65069-03-8, Print ISSN: 1980-1114, pp 53-59
DOI: 10.5769/C2009007 and http://dx.doi.org/10.5769/C2009007
Projeto MAAOS - mecanismo para monitoramento de sistemas operacionais e auditoria para detecção de vestígios
By Vitor Teixeira Costa, and George Soares Fleury
To download the paper, click here.
To return to the "Published Papers" main page, click here.
ABSTRACT
A Model of Security, in a broader context, offers greater control over the assets of information and services available. [2] The mechanism, presented, makes a tangible assessment of the quality of services and accountability on the misuse or mismanagement of resources. The Project MAAOS (Monitoring and Auditing of files and Operating Systems) is a system for monitoring the integrity of files and audit processes that periodically monitors one or more hosts and maintains detailed records of changes to the file system, users, groups, tasks and other processes residing in kernel modules. The hosts, previously established, are monitored regularly, according to resources required and, if desired, the records can be kept for forensic purposes, while the administrator aware of possible attacks and / or threats, to isolate changes that indicate a change in pattern of a process. After the adoption and implementation of this project, the protection of corporate data on the integrity, confidentiality and availability, in terms of operating systems, will cover an automated system, ensuring greater flexibility in the identification of security incidents that affect the corporate services in accordance due to its degree of criticality.
KEYWORDS
Monitoring. Audit. Integrity. Confidentiality. Availability.
A Model of Security, in a broader context, offers greater control over the assets of information and services available. [2] The mechanism, presented, makes a tangible assessment of the quality of services and accountability on the misuse or mismanagement of resources. The Project MAAOS (Monitoring and Auditing of files and Operating Systems) is a system for monitoring the integrity of files and audit processes that periodically monitors one or more hosts and maintains detailed records of changes to the file system, users, groups, tasks and other processes residing in kernel modules. The hosts, previously established, are monitored regularly, according to resources required and, if desired, the records can be kept for forensic purposes, while the administrator aware of possible attacks and / or threats, to isolate changes that indicate a change in pattern of a process. After the adoption and implementation of this project, the protection of corporate data on the integrity, confidentiality and availability, in terms of operating systems, will cover an automated system, ensuring greater flexibility in the identification of security incidents that affect the corporate services in accordance due to its degree of criticality.
KEYWORDS
Monitoring. Audit. Integrity. Confidentiality. Availability.