Personal tools

Ace:Main: Difference between revisions

From Adapt

Jump to: navigation, search
No edit summary
No edit summary
 
(36 intermediate revisions by 2 users not shown)
Line 1: Line 1:
ACE (Auditing Control Environment) is a prototype system that incorporates a new methodology to address the integrity of long term archives using rigorous cryptographic techniques. ACE continuously audits the contents of the various objects according to the policy set by the archive, and provides mechanisms for an independent third-party auditor to certify the integrity of any object.
ACE (Auditing Control Environment) is a system that incorporates a new methodology to address the integrity of long term archives using rigorous cryptographic techniques. ACE continuously audits the contents of the various objects according to the policy set by the archive, and provides mechanisms for an independent third-party auditor to certify the integrity of any object.


Our approach will allow an independent auditor to verify the integrity of every version of an archived digital object as well as link the current version to the original form of the object when it was ingested into the archive. Also, ACE is very cost effective and scalable while making no assumptions about the archive architecture.
ACE consists of two components, the first an Audit Manager(AM) that checks files locally to ensure they have not been compromised. The second part, the Integrity Management Service (IMS), issues tokens that the AM can use to verify that its local store of file digests has not been tampered with.  
 
Anyone wishing to audit their files with ACE only needs to install an Audit Manager locally to manage their files. The ADAPT project runs a publically available IMS at ims.umiacs.umd.edu that any group may freely use.


ACE consists of two components, the first an Audit Manager(AM) that checks files locally to ensure they have not been compromised. The second part, the Integrity Management Service (IMS), issues tokens that the AM can use to verify that its local store of file digests has not been tampered with. In addition the IMS published a daily witness that can be used to ensure the IMS has not acted maliciously or been compromised.
{| width="75%" style="margin-left: 75px;"
{| width="75%" style="margin-left: 75px;"
| '''Audit Manager''' || '''Integrity Management Service'''
| '''Audit Manager''' || '''Integrity Management Service'''
Line 9: Line 10:
| [[Ace:Audit Manager Installation Guide|Download Audit Manager]] || [[Ace:Ace IMS System|System Documentation]]
| [[Ace:Audit Manager Installation Guide|Download Audit Manager]] || [[Ace:Ace IMS System|System Documentation]]
|-
|-
| [[Ace:Audit Manager User Guide|User Guide]] || [http://groups.google.com/group/ace-ims-witness?hl=en IMS Witness Google Goup]
| [[Ace:Audit Manager User Guide|User Guide]] || [http://ims.umiacs.umd.edu:8080/ace-ims/IMSWebService IMS Webservice]
|-
| [http://groups.google.com/group/ace-devel Discussion List] || [[Ace:Validating Witness and Tokens|Validating Tokens and Witnesses]]
|-
| [[Ace:Audit Manager Upgrading|Upgrade Audit Manager]] || [http://groups.google.com/group/ace-ims-witness?hl=en IMS Witness Google Goup]
|-  
|-  
| || [http://mailman.umiacs.umd.edu/mailman/listinfo/ims-witness IMS Witness UMIACS listserv]
| [[Ace:AM Config Reference|AM Configuration Options]] || [http://mailman.umiacs.umd.edu/mailman/listinfo/ims-witness IMS Witness UMIACS listserv]
|-
| [[Ace:Comparing Collections|Comparing Collections]] || [[Ace:IMS Installation| IMS Installation Guide]]
|-
| '''Resources'''
|-
| [https://gitlab.com/chronopolis/audit-control-environment Gitlab Project Repo]
|-
| [[Ace:Devel Pages|Development Documentation]]
|-
| [[Ace:Webstart Client|Auditor Application]] ||
|-
| [http://digitalcommons.uconn.edu/libr_pubs/39/ Step by Step installation instructions]
|}
|}


Future improvements to ACE include expanding the list types of storage that the Audit Manager recognizes and creating tools to facilitate 3rd party auditing of the IMS. A complete roadmap can be found [[Ace Roadmap|here]]
 
'''Papers and Presentations'''
 
* Smorul, M., Song, S., and JaJa, J. An Implementation of the Audit Control Environment(ACE) to Support the Long Term Integrity of Digital Archives. in DigCCurr 2009. 2009: University of North Carolina.[[media:DigCCurr2009_060909.pdf|pdf]] presentation [[media:Smorul-digccurr09.ppt|ppt]]
* ACE Presentation at Archiving 2007 (5/07) [[media: ACE-Archiving2007.ppt|ppt]]
* Song, S. and JaJa, J. ACE: A Novel Software Platform to Ensure the Integrity of Long Term Archives. in Archiving 2007. 2007: IS&T. [[media:rad71E67.pdf|pdf]]
 
Development of the ACE Version1.0 release was partially sponsored by the US National Archives and Records Administration. The basic research on ACE was partially sponsored under a DIGARCH grant from NSF/Library of Congress.

Latest revision as of 18:31, 25 July 2019

ACE (Auditing Control Environment) is a system that incorporates a new methodology to address the integrity of long term archives using rigorous cryptographic techniques. ACE continuously audits the contents of the various objects according to the policy set by the archive, and provides mechanisms for an independent third-party auditor to certify the integrity of any object.

ACE consists of two components, the first an Audit Manager(AM) that checks files locally to ensure they have not been compromised. The second part, the Integrity Management Service (IMS), issues tokens that the AM can use to verify that its local store of file digests has not been tampered with.

Anyone wishing to audit their files with ACE only needs to install an Audit Manager locally to manage their files. The ADAPT project runs a publically available IMS at ims.umiacs.umd.edu that any group may freely use.

Audit Manager Integrity Management Service
Download Audit Manager System Documentation
User Guide IMS Webservice
Discussion List Validating Tokens and Witnesses
Upgrade Audit Manager IMS Witness Google Goup
AM Configuration Options IMS Witness UMIACS listserv
Comparing Collections IMS Installation Guide
Resources
Gitlab Project Repo
Development Documentation
Auditor Application
Step by Step installation instructions


Papers and Presentations

  • Smorul, M., Song, S., and JaJa, J. An Implementation of the Audit Control Environment(ACE) to Support the Long Term Integrity of Digital Archives. in DigCCurr 2009. 2009: University of North Carolina.pdf presentation ppt
  • ACE Presentation at Archiving 2007 (5/07) ppt
  • Song, S. and JaJa, J. ACE: A Novel Software Platform to Ensure the Integrity of Long Term Archives. in Archiving 2007. 2007: IS&T. pdf

Development of the ACE Version1.0 release was partially sponsored by the US National Archives and Records Administration. The basic research on ACE was partially sponsored under a DIGARCH grant from NSF/Library of Congress.