Upload
lisanl
View
66
Download
0
Embed Size (px)
Citation preview
© 2015 IBM Corporation
Audit Logging
IBM InfoSphere Streams Version 4.0
Jingdong Sun
InfoSphere Streams Platform
<For questions about this presentation contact Jingdong Sun:
2 © 2015 IBM Corporation
Important Disclaimer
THE INFORMATION CONTAINED IN THIS PRESENTATION IS PROVIDED FOR INFORMATIONALPURPOSES ONLY.
WHILE EFFORTS WERE MADE TO VERIFY THE COMPLETENESS AND ACCURACY OF THEINFORMATION CONTAINED IN THIS PRESENTATION, IT IS PROVIDED “AS IS”, WITHOUT WARRANTYOF ANY KIND, EXPRESS OR IMPLIED.
IN ADDITION, THIS INFORMATION IS BASED ON IBM’S CURRENT PRODUCT PLANS AND STRATEGY,WHICH ARE SUBJECT TO CHANGE BY IBM WITHOUT NOTICE.
IBM SHALL NOT BE RESPONSIBLE FOR ANY DAMAGES ARISING OUT OF THE USE OF, OROTHERWISE RELATED TO, THIS PRESENTATION OR ANY OTHER DOCUMENTATION.
NOTHING CONTAINED IN THIS PRESENTATION IS INTENDED TO, OR SHALL HAVE THE EFFECT OF:
• CREATING ANY WARRANTY OR REPRESENTATION FROM IBM (OR ITS AFFILIATES OR ITS ORTHEIR SUPPLIERS AND/OR LICENSORS); OR
• ALTERING THE TERMS AND CONDITIONS OF THE APPLICABLE LICENSE AGREEMENTGOVERNING THE USE OF IBM SOFTWARE.
IBM’s statements regarding its plans, directions, and intent are subject to change orwithdrawal without notice at IBM’s sole discretion. Information regarding potentialfuture products is intended to outline our general product direction and it should notbe relied on in making a purchasing decision. The information mentioned regardingpotential future products is not a commitment, promise, or legal obligation to deliverany material, code or functionality. Information about potential future products maynot be incorporated into any contract. The development, release, and timing of anyfuture features or functionality described for our products remains at our solediscretion.
THIS INFORMATION IS BASED ON IBM’S CURRENT PRODUCT PLANS AND STRATEGY, WHICH ARE SUBJECT TO CHANGE BY IBM WITHOUT NOTICE.
IBM SHALL NOT BE RESPONSIBLE FOR ANY DAMAGES ARISING OUT OF THE USE OF, OR OTHERWISE RELATED TO, THIS PRESENTATION OR ANY OTHER DOCUMENTATION.
3 © 2015 IBM Corporation
Agenda
Overview
Auditing and demo
4 © 2015 IBM Corporation
Auditing for Streams -- Overview
• Able to audit exactly what has been deployed and run with Streams• Streams support "comprehensive", multiple level auditing – From CLI
(streamtool/JMX), to Java API, security, and Runtime services.
• Provide customer enough information to track operations to Streams• Streams is able to audit user operations with sufficient detail to be able to
reasonably identify and show misuse of the system from the audit logs.
• Streams provides an audit interface, which will allow a custom implementation
of the audit log logger. For example a customer may want to write the audit
log to systems like Guardium or hadoop.
5 © 2015 IBM Corporation
Auditing for Streams
• Streams auditlog service does auditing for whole domain.• To enable flexibility to fit different customer requests, Streams using log4j as
back engine for auditing, and up to customer log4j setup for audit
appenders/repositories.
• Audit log message formatTimestamp* D[domain] I[instance] H[host] U[user]
SUCCESS/FAILURE/NA SRC[operation-source] OBJ[operation-object]
OP[operation-and-parameters] message
• By default, Streams turns off auditing.
• Turn on audit for Streams domain:• http://www-
01.ibm.com/support/knowledgecenter/SSCRJU_4.0.0/com.ibm.streams.cfg.doc/doc/ib
minfospherestreams-user-security-audit-log.html
6 © 2015 IBM Corporation
Demo
7 © 2015 IBM Corporation
Questions?