Hardware-assisted log protection devices and systems
US9881154B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Sep 20, 2013 |
| Grant date | Jan 30, 2018 |
| Priority date | — |
| Expiry date | Jan 14, 2034 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F2221/2153
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
A hardware-assisted technique may protect a system log from attackers, regardless of an attacker's acquired privileges at the host system. In some embodiments, the technique may employ specialized hardware, e.g., in the form of an add-on peripheral card. The hardware may be connected to a commodity server through a standard bus. Said hardware may stores log files from a host system while permitting only read and append operations from the host system. Thus, even if the attacker obtains root privileges at the host system, removal through the host system of logs may be prevented because the asymmetric interface does not support such commands from the host system. In some embodiments, an existing log file storage path at the host system may be maintained, reducing the required change to implement the disclosed techniques within existing server setups. Further, any performance degradation due to the techniques may be small to negligible.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.