Advanced

Processing engine for security health checks

Huynh, Christofer and Gustafsson, Jesper (2017)
Computer Science and Engineering (BSc)
Abstract
Computer security is still an often neglected field even though the IT industry is huge and still growing. Making sure that systems are secure is something that is very important but can take a lot of man hours.
This thesis contains the research and documentation for an auditing tool created
on behalf of a company that specialises in computer security, TrueSec. The audit
tool uses the log files that are built from the scripts that TrueSec uses to runs various unix commands as a base, but it has been designed in such a way to allow the addition of other types of logs. The tool was designed with future development in mind. It uses configuration files that are seperated from the code itself to declare rules which the log files are checked... (More)
Computer security is still an often neglected field even though the IT industry is huge and still growing. Making sure that systems are secure is something that is very important but can take a lot of man hours.
This thesis contains the research and documentation for an auditing tool created
on behalf of a company that specialises in computer security, TrueSec. The audit
tool uses the log files that are built from the scripts that TrueSec uses to runs various unix commands as a base, but it has been designed in such a way to allow the addition of other types of logs. The tool was designed with future development in mind. It uses configuration files that are seperated from the code itself to declare rules which the log files are checked against, allowing the tool to evolve with time by adding new rules.
At the request of TrueSec a simple web service as a proof of concept for an
online service with an authentication model with log in and user roles for uploading log files and storing the output from the audit tool was also developed. (Less)
Please use this url to cite or link to this publication:
author
Huynh, Christofer and Gustafsson, Jesper
organization
year
type
M2 - Bachelor Degree
subject
keywords
audit tool, computer security, security audit, analysis engine, security health check
language
English
id
8917776
date added to LUP
2017-06-21 04:09:47
date last changed
2018-10-18 10:36:06
@misc{8917776,
  abstract     = {Computer security is still an often neglected field even though the IT industry is huge and still growing. Making sure that systems are secure is something that is very important but can take a lot of man hours.
This thesis contains the research and documentation for an auditing tool created
on behalf of a company that specialises in computer security, TrueSec. The audit
tool uses the log files that are built from the scripts that TrueSec uses to runs various unix commands as a base, but it has been designed in such a way to allow the addition of other types of logs. The tool was designed with future development in mind. It uses configuration files that are seperated from the code itself to declare rules which the log files are checked against, allowing the tool to evolve with time by adding new rules.
At the request of TrueSec a simple web service as a proof of concept for an
online service with an authentication model with log in and user roles for uploading log files and storing the output from the audit tool was also developed.},
  author       = {Huynh, Christofer and Gustafsson, Jesper},
  keyword      = {audit tool,computer security,security audit,analysis engine,security health check},
  language     = {eng},
  note         = {Student Paper},
  title        = {Processing engine for security health checks},
  year         = {2017},
}