Abstract

A number of Internet Services, in particular commercial ones, ranging from network access to application and content services require security support in many different aspects including access control, secure communication, non-repudiation, contract compliance, and auditing. Among these the auditing process works as a controller of the other support services.

Auditing is defined as an independent examination of audit trails to ensure compliance with established policy and procedures. A pre-requisition is explicit definitions of the services to be controlled.

The goal of this thesis is to design an auditing framework for Mobile IPv6 networks. The work is carried out within the MobyDick EU project. The auditing of support servuces is done by the service providers, and we focus on the requirements these providers place on an autiding framework. A combined procedure based on Use Case Maps (UCM) and Message Sequence Charts (MSC) is used to model the different support services needed for provision of application services.

Discussion

• Thesis available at ftp://www.tik.ee.ethz.ch/pub/students/2002-So/DA-2002-27.pdf
• Please feel free to discuss this article directly on this page. Constructive comments are welcomed! Please sign your TWiki name.