Security Interface Specifications

Auditing and Authentication

X/Open

Publisher: X/Open, 1990, 135 pages

Keywords: IT Security

Last modified: March 7, 2022, 3:19 p.m.

Synopsis

Snapshot

Table of Contents

  1. Introduction
  2. Overview
    1. General
    2. Security Auditing
    3. Audit Trails
    4. Authentication Extensions
    5. XSI Changes and Extensions
    6. Configuration
      1. The ACCOUNTABILITY Option
      2. The AUTHENTICATION Option
    7. Definitions
      1. Accountability
      2. Appropriate Privileges
      3. Audit ID
      4. Audit Record
      5. Audit State
      6. Audit Trail
      7. Auditing Style
      8. Auditor
      9. Authentication
      10. Authentication Database
      11. Discretionary Access Control
      12. Identification Database
      13. Mandatory Access Control
      14. Object
      15. Subject
      16. TCB
      17. Trusted Computing Base
  3. Function and Interface
    1. Security Auditing
      1. Audit Identifier Interfaces
      2. Audit Reduction Interfaces
      3. Trusted Application Interfaces
      4. Audit Control Interfaces
      5. Protecting the Audit Trail
    2. Audit Record Format
      1. Purpose of Records
      2. Audit Record Contents
    3. Audit Event Classes and Event Types
    4. Auditing Style
      1. Auditing Style Interfaces
      2. Include Absolute Pathnames
      3. Include Object MAC Information
      4. Include Object DAC Information
    5. XSI Changes and Extensions
      1. Commands and Utilities
      2. System Interfaces and Headers
      3. Passwords and Password Aging
  4. Commands and Utilities
    • at
    • crontab
  5. System Interfaces and Headers
    • aud_commit()
    • aud_config()
    • aud_discard()
    • aud_get_header()
    • aud_get_object()
    • aud_get_event_info()
    • aud_length()
    • aud_next()
    • aud_print()
    • aud_put_object()
    • aud_put_event_info()
    • aud_start()
    • aud_switch()
    • exec
    • fork()
    • get_password_aging()
    • get_process_audit_ID()
    • get_process_audit_events()
    • get_user_audit_events()
    • map_audit_ID_to_user()
    • map_user_to_audit_ID()
    • secure_get_password_user()
    • secure_put_password_user()
    • set_password_aging()
    • set_process_audit_ID()
    • set_process_audit_events()
    • set_user_audit_ID()
    • set_user_audit_events()
    • sysconf()
    • update_audit_events()
    • <audit.h>
    • <limits.h>
    • <unistd.h>
  6. Audit Event Classes and Event Types
    1. Summary of Auditing Operations
      1. Auditing at the System Interface
      2. Auditing at the User Interface
    2. Audit Event Types
      1. AET_AUDIT_SWITCH
      2. AET_CHDIR
      3. AET_CHMOD
      4. AET_CHOWN
      5. AET_CHROOT
      6. AET_CREAT
      7. AET_EXEC
      8. AET_EXECE
      9. AET_EXIT
      10. AET_FORK
      11. AET_KILL
      12. AET_LINK
      13. AET_LOGIN_USER
      14. AET_LOGOUT_USER
      15. AET_MKDIR
      16. AET_MKFIFO
      17. AET_MSGCTL
      18. AET_MGSGET
      19. AET_OPEN
      20. AET_RENAME
      21. AET_RMDIR
      22. AET_SECURE_PUT_PASSWD_USER
      23. AET_SEMCTL
      24. AET_SEMGET
      25. AET_SET_PASSWORD_AGING
      26. AET_SET_PROCESS_AUDIT_ID
      27. AET_SET_PROCESS_AUDIT_EVENTS
      28. AET_SET_USER_AUDIT_EVENTS
      29. AET_SETGID
      30. AET_SETUID
      31. AET_SHMCTL
      32. AET_SHMGET
      33. AET_SWITCH_USER
      34. AET_UNLINK
      35. AET_UPDATE_AUDIT_EVENTS
    3. Audit Event Classes
      1. Summary of Event Classes
      2. AEC_ACCESS_CHANGE
      3. AEC_ACCESS_DENIALS
      4. AEC_ADMIN_OPERATOR
      5. AEC_AUTHENTICATION
      6. AEC_OBJECT_AVAILABLE
      7. AEC_OBJECT_CREATION
      8. AEC_OBJECT_DELETION
      9. AEC_OBJECT_MODIFICATION
      10. AEC_OBJECT_TO_SUBJECT
      11. AEC_OBJECT_UNAVAILABLE
      12. AEC_PRIVILEGE
      13. AEC_PROCESS
      14. AEC_PROCESS_CONTROL
      15. AEC_RESOURCE_DENIALS
      16. AEC_SYSTEM
  1. Rationale
    1. Introduction
      1. Document Cross-References
    2. Overview
      1. General
      2. Security Auditing
      3. Audit Record Format
      4. XSI Changes and Extensions
      5. Configuration
    3. Function and Interface
      1. Security Auditing
      2. Audit Record Format
      3. Audit Event Classes and Event Types
      4. Auditing Style
      5. XSI Changes and Extensions
      6. Passwords and Password Aging
    4. Commands and Utilities
      1. at, batch
      2. crontab
    5. System Interfaces and Headers
      1. aud_commit()
      2. aud_config()
      3. aud_discard()
      4. aud_get_header()
      5. aud_get_object()
      6. aud_get_event_info()
      7. aud_length()
      8. aud_next()
      9. aud_print()
      10. aud_put_object()
      11. aud_put_event_info()
      12. aud_start()
      13. aud_switch()
      14. exec()
      15. fork()
      16. get_password_aging()
      17. get_process_audit_ID()
      18. get_process_audit_events()
      19. get_user_audit_events()
      20. map_audit_ID_to_user()
      21. map_user_to_audit_ID()
      22. secure_get_password_user()
      23. secure_put_password_user()
      24. set_password_aging()
      25. set_process_audit_ID()
      26. set_process_audit_events()
      27. set_user_audit_ID()
      28. set_user_audit_events()
      29. sysconf()
      30. update_audit_events()
      31. audit.h
      32. limits.h
      33. unistd.h
    6. Audit Event Classes and Event types
  2. Non-Actioned Review Comments

Reviews

Security Interface Specifications

Reviewed by Roland Buresund

Decent ****** (6 out of 10)

Last modified: May 21, 2007, 3:23 a.m.

Opinion

An old specification, mostly written by an old friend of mine (Gerald Krummeck). Never made any impact, which was a pity, as it was pretty well written.

Comments

There are currently no comments

New Comment

required

required (not published)

optional

required

captcha

required