Computer Security Art and Science, 2nd Edition

Chapter 25 Auditing

LADY MACBETH: Your servants ever Have theirs, themselves and what is theirs, in compt, To make their audit at your highness’ pleasure, Still to return your own.

— The Tragedy of Macbeth, I, vi, 27–30.

Auditing is a technique for determining security violations. This chapter presents the notions of logging (recording of system events and actions) and auditing (analysis of these records). Auditing plays a major role in detecting security violations and in postmortem analysis to determine precisely what happened and how. This makes an effective auditing subsystem a key security component of any system.

25.1 Definition

The development of techniques for auditing computer systems sprang from the need to trace access to sensitive ...

Get Computer Security Art and Science, 2nd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Computer Security Art and Science, 2nd Edition by Matt Bishop

Chapter 25

Auditing

25.1 Definition

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly