Secure Remote Storage of Logs with Search Capabilities
Along with the use of cloud-based services, infrastructure, and storage, the use of application logs in business critical applications is a standard practice. Application logs must be stored in an accessible manner in order to be used whenever needed. The debugging of these applications is a common...
Main Authors: | , |
---|---|
Format: | Article |
Language: | English |
Published: |
MDPI AG
2021-06-01
|
Series: | Journal of Cybersecurity and Privacy |
Subjects: | |
Online Access: | https://www.mdpi.com/2624-800X/1/2/19 |
_version_ | 1797530911776964608 |
---|---|
author | Rui Araújo António Pinto |
author_facet | Rui Araújo António Pinto |
author_sort | Rui Araújo |
collection | DOAJ |
description | Along with the use of cloud-based services, infrastructure, and storage, the use of application logs in business critical applications is a standard practice. Application logs must be stored in an accessible manner in order to be used whenever needed. The debugging of these applications is a common situation where such access is required. Frequently, part of the information contained in logs records is sensitive. In this paper, we evaluate the possibility of storing critical logs in a remote storage while maintaining its confidentiality and server-side search capabilities. To the best of our knowledge, the designed search algorithm is the first to support full Boolean searches combined with field searching and nested queries. We demonstrate its feasibility and timely operation with a prototype implementation that never requires access, by the storage provider, to plain text information. Our solution was able to perform search and decryption operations at a rate of, approximately, 0.05 ms per line. A comparison with the related work allows us to demonstrate its feasibility and conclude that our solution is also the fastest one in indexing operations, the most frequent operations performed. |
first_indexed | 2024-03-10T10:35:46Z |
format | Article |
id | doaj.art-099c4a96a33e46409c815f22434ab133 |
institution | Directory Open Access Journal |
issn | 2624-800X |
language | English |
last_indexed | 2024-03-10T10:35:46Z |
publishDate | 2021-06-01 |
publisher | MDPI AG |
record_format | Article |
series | Journal of Cybersecurity and Privacy |
spelling | doaj.art-099c4a96a33e46409c815f22434ab1332023-11-21T23:16:39ZengMDPI AGJournal of Cybersecurity and Privacy2624-800X2021-06-011234036410.3390/jcp1020019Secure Remote Storage of Logs with Search CapabilitiesRui Araújo0António Pinto1CIICESI, ESTG, Politécnico do Porto, 4200-465 Porto, PortugalCIICESI, ESTG, Politécnico do Porto and CRACS & INESC TEC, 4200-465 Porto, PortugalAlong with the use of cloud-based services, infrastructure, and storage, the use of application logs in business critical applications is a standard practice. Application logs must be stored in an accessible manner in order to be used whenever needed. The debugging of these applications is a common situation where such access is required. Frequently, part of the information contained in logs records is sensitive. In this paper, we evaluate the possibility of storing critical logs in a remote storage while maintaining its confidentiality and server-side search capabilities. To the best of our knowledge, the designed search algorithm is the first to support full Boolean searches combined with field searching and nested queries. We demonstrate its feasibility and timely operation with a prototype implementation that never requires access, by the storage provider, to plain text information. Our solution was able to perform search and decryption operations at a rate of, approximately, 0.05 ms per line. A comparison with the related work allows us to demonstrate its feasibility and conclude that our solution is also the fastest one in indexing operations, the most frequent operations performed.https://www.mdpi.com/2624-800X/1/2/19loggingcryptographysearchable encryptionprivacyconfidentiality |
spellingShingle | Rui Araújo António Pinto Secure Remote Storage of Logs with Search Capabilities Journal of Cybersecurity and Privacy logging cryptography searchable encryption privacy confidentiality |
title | Secure Remote Storage of Logs with Search Capabilities |
title_full | Secure Remote Storage of Logs with Search Capabilities |
title_fullStr | Secure Remote Storage of Logs with Search Capabilities |
title_full_unstemmed | Secure Remote Storage of Logs with Search Capabilities |
title_short | Secure Remote Storage of Logs with Search Capabilities |
title_sort | secure remote storage of logs with search capabilities |
topic | logging cryptography searchable encryption privacy confidentiality |
url | https://www.mdpi.com/2624-800X/1/2/19 |
work_keys_str_mv | AT ruiaraujo secureremotestorageoflogswithsearchcapabilities AT antoniopinto secureremotestorageoflogswithsearchcapabilities |