On Tue, Jan 22, 2008 at 09:34:13AM -0500, Win Htin wrote: > Is there a way to implement file backups so that I can proof the files were > signed and not tampered with? For example, if a customer claims a certain > trade never happened, I can refute the claim by saying "my backup files says > otherwise" and stand behind my statement. As of now, I'm using SHA1 > signature in my FileSet definition. I am not sure if this is good enough or > if it is even the appropriate solution. Your input is much appreciated. What I think you are really looking for is a way to prove that a given backup file was created with certain contents *at a certain time*.
If you are backing up to files (instead of tape), I suggest generating GPG detached signatures for each of your volumes, and periodically sending those signatures to a service such as 'PGP stamper' http://www.itconsult.co.uk/stamper/stampinf.htm. They will sign those signatures, providing an external cryptographically sound proof that the the volumes were created no later than the time stamp. If you are backing up directly to tape then it is a bit harder. You might try periodically exporting your Bacula DB and generating the signature based on that. The DB will have the checksum of the file, and the stamped signature proves the file had that checksum at a certain date. This method is a bit more convoluted. The underlying problem is that you can fake all the records about a given file unless an impartial 3rd party is involved, so the trick is to figure out how to arrive at that. Some storage manufacturers such as NetApp have an 'audit vault' product that is essentially a write-once HD system. You could invest in one of those and write out some sort of audit log to it, essentially making the storage manufacturer the 3rd party. The complexity of the solution depends on how much money is at stake. If your clients are making / losing billions off of these trades then you probably incredibly robust and backed by well known names who can provide expert witnesses in the case of lawsuits. For smaller amounts you will at least want a very well written document describing how the system proves a given trade happened when, so that when someone questions it you just send them the PDF. -Jason Martin -- This message is PGP/MIME signed.
pgpkfw8DJgT0R.pgp
Description: PGP signature
------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________ Bacula-users mailing list Bacula-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/bacula-users
