<i>RootLogChain</i>: Registering Log-Events in a Blockchain for Audit Issues from the Creation of the Root
Logging system activities are required to provide credibility and confidence in the systems used by an organization. Logs in computer systems must be secured from the root user so that they are true and fair. This paper introduces <i>RootLogChain</i>, a blockchain-based audit mechanism t...
Guardado en:
| Autores principales: | , , |
|---|---|
| Formato: | article |
| Lenguaje: | EN |
| Publicado: |
MDPI AG
2021
|
| Materias: | |
| Acceso en línea: | https://doaj.org/article/e0fb500e6a014f8a86e13d152633f12c |
| Etiquetas: |
Agregar Etiqueta
Sin Etiquetas, Sea el primero en etiquetar este registro!
|
| id |
oai:doaj.org-article:e0fb500e6a014f8a86e13d152633f12c |
|---|---|
| record_format |
dspace |
| spelling |
oai:doaj.org-article:e0fb500e6a014f8a86e13d152633f12c2021-11-25T18:58:20Z<i>RootLogChain</i>: Registering Log-Events in a Blockchain for Audit Issues from the Creation of the Root10.3390/s212276691424-8220https://doaj.org/article/e0fb500e6a014f8a86e13d152633f12c2021-11-01T00:00:00Zhttps://www.mdpi.com/1424-8220/21/22/7669https://doaj.org/toc/1424-8220Logging system activities are required to provide credibility and confidence in the systems used by an organization. Logs in computer systems must be secured from the root user so that they are true and fair. This paper introduces <i>RootLogChain</i>, a blockchain-based audit mechanism that is built upon a security protocol to create both a root user in a blockchain network and the first log; from there, all root events are stored as logs within a standard blockchain mechanism. <i>RootLogChain</i> provides security constructs so as to be deployed in a distributed context over a hostile environment, such as the internet. We have developed a prototype based on a microservice architecture, validating it by executing different stress proofs in two scenarios: one with compliant agents and the other without. In such scenarios, several compliant and non-compliant agents try to become a root and register the events within the blockchain. Non-compliant agents simulate eavesdropper entities that do not follow the rules of the protocol. Our experiments show that the mechanism guarantees the creation of one and only one root user, integrity, and authenticity of the transactions; it also stores all events generated by the root within a blockchain. In addition, for audit issues, the traceability of the transaction logs can be consulted by the root.Juan Carlos López-PimentelLuis Alberto Morales-RosalesRaúl MonroyMDPI AGarticleblockchainauditroot creationsecurity protocolssmart contractsChemical technologyTP1-1185ENSensors, Vol 21, Iss 7669, p 7669 (2021) |
| institution |
DOAJ |
| collection |
DOAJ |
| language |
EN |
| topic |
blockchain audit root creation security protocols smart contracts Chemical technology TP1-1185 |
| spellingShingle |
blockchain audit root creation security protocols smart contracts Chemical technology TP1-1185 Juan Carlos López-Pimentel Luis Alberto Morales-Rosales Raúl Monroy <i>RootLogChain</i>: Registering Log-Events in a Blockchain for Audit Issues from the Creation of the Root |
| description |
Logging system activities are required to provide credibility and confidence in the systems used by an organization. Logs in computer systems must be secured from the root user so that they are true and fair. This paper introduces <i>RootLogChain</i>, a blockchain-based audit mechanism that is built upon a security protocol to create both a root user in a blockchain network and the first log; from there, all root events are stored as logs within a standard blockchain mechanism. <i>RootLogChain</i> provides security constructs so as to be deployed in a distributed context over a hostile environment, such as the internet. We have developed a prototype based on a microservice architecture, validating it by executing different stress proofs in two scenarios: one with compliant agents and the other without. In such scenarios, several compliant and non-compliant agents try to become a root and register the events within the blockchain. Non-compliant agents simulate eavesdropper entities that do not follow the rules of the protocol. Our experiments show that the mechanism guarantees the creation of one and only one root user, integrity, and authenticity of the transactions; it also stores all events generated by the root within a blockchain. In addition, for audit issues, the traceability of the transaction logs can be consulted by the root. |
| format |
article |
| author |
Juan Carlos López-Pimentel Luis Alberto Morales-Rosales Raúl Monroy |
| author_facet |
Juan Carlos López-Pimentel Luis Alberto Morales-Rosales Raúl Monroy |
| author_sort |
Juan Carlos López-Pimentel |
| title |
<i>RootLogChain</i>: Registering Log-Events in a Blockchain for Audit Issues from the Creation of the Root |
| title_short |
<i>RootLogChain</i>: Registering Log-Events in a Blockchain for Audit Issues from the Creation of the Root |
| title_full |
<i>RootLogChain</i>: Registering Log-Events in a Blockchain for Audit Issues from the Creation of the Root |
| title_fullStr |
<i>RootLogChain</i>: Registering Log-Events in a Blockchain for Audit Issues from the Creation of the Root |
| title_full_unstemmed |
<i>RootLogChain</i>: Registering Log-Events in a Blockchain for Audit Issues from the Creation of the Root |
| title_sort |
<i>rootlogchain</i>: registering log-events in a blockchain for audit issues from the creation of the root |
| publisher |
MDPI AG |
| publishDate |
2021 |
| url |
https://doaj.org/article/e0fb500e6a014f8a86e13d152633f12c |
| work_keys_str_mv |
AT juancarloslopezpimentel irootlogchainiregisteringlogeventsinablockchainforauditissuesfromthecreationoftheroot AT luisalbertomoralesrosales irootlogchainiregisteringlogeventsinablockchainforauditissuesfromthecreationoftheroot AT raulmonroy irootlogchainiregisteringlogeventsinablockchainforauditissuesfromthecreationoftheroot |
| _version_ |
1718410496813563904 |