Techniques for preserving and managing identities in an audit log
First Claim
Patent Images
1. A method, comprising:
- obtaining a transaction identity;
generating an index entry into an index structure for referencing the transaction identity;
identifying a message digest for the transaction identity; and
emitting a log entry within a log that identifies the index entry and the message digest for the transaction identity.
11 Assignments
0 Petitions
Accused Products
Abstract
Techniques are provided for preserving and managing identities within an audit log. Initial entries into a log do not include an explicit and direct reference to an agent that performs a transaction; rather, the agent acquires a temporary transaction identity for the transaction and an indirect reference to the transaction identity is written to the log while the transaction is pending. Once the transaction completes a direct reference to the transaction identity is written to the log, the identity of agent remains transparent until the identity of the agent expires, if at all.
-
Citations
29 Claims
-
1. A method, comprising:
-
obtaining a transaction identity;
generating an index entry into an index structure for referencing the transaction identity;
identifying a message digest for the transaction identity; and
emitting a log entry within a log that identifies the index entry and the message digest for the transaction identity. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method, comprising:
-
authenticating a principal for a request to acquire a transaction identity;
evaluating a policy with respect to the principal and with respect to one or more resources that are associated with a transaction, which is to be performed using the transaction identity; and
supplying the principal with the transaction identity, if permitted by the policy, and wherein the transaction identity is associated with one or more identities of the one or more resources. - View Dependent Claims (10, 11, 12, 13)
-
-
14. A method, comprising:
-
receiving a transaction identity to be associated with an agent for a transaction;
adding an index entry to reference the transaction identity within an index data structure; and
creating, if not in existence, a message digest for the agent. - View Dependent Claims (15, 16, 17, 18)
-
-
19. A system, comprising:
-
a log; and
a transaction identity, wherein entries in the log reference the transaction identity while transactions are pending without specifically identifying the transaction identity. - View Dependent Claims (20, 21, 22, 23, 24)
-
-
25. A system, comprising:
-
an identity service; and
a logging service, wherein the identity service is to supply a transaction identity for a transaction, and wherein the logging service is to generate entries into the log that does not identify the transaction identity while the transaction is pending and remains active. - View Dependent Claims (26, 27, 28, 29)
-
Specification