Hi Jason,
That's exactly what I'm looking for. Thanks a lot for the very detailed
suggestion. I'll follow up on it.
Win
On Jan 22, 2008 11:31 AM, Jason Martin <[EMAIL PROTECTED]> wrote:
> On Tue, Jan 22, 2008 at 09:34:13AM -0500, Win Htin wrote:
> > Is there a way to implement file backups so that I can proof the files
> were
> > signed and not tampered with? For example, if a customer claims a
> certain
> > trade never happened, I can refute the claim by saying "my backup files
> says
> > otherwise" and stand behind my statement. As of now, I'm using SHA1
> > signature in my FileSet definition. I am not sure if this is good enough
> or
> > if it is even the appropriate solution. Your input is much appreciated.
> What I think you are really looking for is a way to prove that a
> given backup file was created with certain contents *at a
> certain time*.
>
> If you are backing up to files (instead of tape), I suggest
> generating GPG detached signatures for each of your volumes, and
> periodically sending those signatures to a service such as 'PGP
> stamper' http://www.itconsult.co.uk/stamper/stampinf.htm. They
> will sign those signatures, providing an external
> cryptographically sound proof that the the volumes were created
> no later than the time stamp.
>
> If you are backing up directly to tape then it is a bit harder.
> You might try periodically exporting your Bacula DB and
> generating the signature based on that. The DB will have the
> checksum of the file, and the stamped signature proves the file
> had that checksum at a certain date. This method is a bit more
> convoluted.
>
> The underlying problem is that you can fake all the records
> about a given file unless an impartial 3rd party is involved, so
> the trick is to figure out how to arrive at that.
>
> Some storage manufacturers such as NetApp have an 'audit vault'
> product that is essentially a write-once HD system. You could
> invest in one of those and write out some sort of audit log to
> it, essentially making the storage manufacturer the 3rd party.
>
> The complexity of the solution depends on how much money is at
> stake. If your clients are making / losing billions off of these
> trades then you probably incredibly robust and backed by well
> known names who can provide expert witnesses in the case of
> lawsuits. For smaller amounts you will at least want a very well
> written document describing how the system proves a given trade
> happened when, so that when someone questions it you just send
> them the PDF.
>
> -Jason Martin
> --
> This message is PGP/MIME signed.
>
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
Bacula-users mailing list
Bacula-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/bacula-users
