Writing, supporting, and evaluating tripwire: a publically available security tool
作者: Eugene H. Spafford , Gene H. Kim
DOI:
关键词:
摘要: Tripwire is an integrity checking program written for the Unix environment that gives system administrators ability to monitor file systems added, deleted, and modified files. First released in November of 1992, has undergone several updates current use at thousands machines worldwide. This paper begins with a brief overview what does how it works. We discuss certain implementation decisions affected course development. also present other applications have been found Tripwire. These unanticipated uses guided demands some users, we describe addressed these without compromising serve as useful security tool. We process releasing, then supporting, widely available used tool across Internet, meeting users' high expectations affects this process. How issues Tripwire, done independent study by undergraduate, discussed. Software tools were developing maintaining are presented. Finally, problems remain unresolved possible solutions
参考文章(7)
Eugene H. Spafford, Daniel Farmer, The COPS Security Checker System USENIX Summer. pp. 165- 170 ,(1990)
David A. Curry, UNIX System Security: A Guide for Users and System Administrators ,(1992)
Eugene H. Spafford, Gene H. Kim, Experiences with Tripwire: Using Integrity Checkers for Intrusion Detection ,(1994)
Gene Spafford, Simson Garfinkel, Practical UNIX Security ,(1991)
Walter F. Tichy, Design, implementation, and evaluation of a Revision Control System international conference on software engineering. pp. 58- 67 ,(1982) , 10.5555/800254.807748
Gene H. Kim, Eugene H. Spafford, The design and implementation of tripwire: a file system integrity checker computer and communications security. pp. 18- 29 ,(1994) , 10.1145/191177.191183
David Vincenzetti, Massimo Cotrozzi, ATP - Anti-Tampering Program. usenix security symposium. ,(1993)