Log File Encryption in SmartInspect 3.0

By Dennis Gurock | July 29, 2008
If you are a .NET, Java or Delphi developer, make sure to take a look at our advanced logging tool SmartInspect.

Also new in SmartInspect 3.0 is encryption support for log files. It is not unusual to write proprietary and sensitive information (such as implementation details) to log files that have to be protected from third-parties or even customers.

Some SmartInspect users have already implemented encryption support on their own and we are happy that the upcoming SmartInspect version has full built-in support for log file encryption. The nice thing about integrating this feature directly into SmartInspect over using a custom solution is that we also added support for log file decryption directly to the Console. This means that if you try to open an encrypted log file in the Console, you get a "Enter key" dialog which asks for the encryption key, decrypts the log file and then loads it as usual.

enterkey

The encryption feature uses the secure and fast AES (Rijndael) encryption algorithm. We decided to use 128-bit keys since they are not subject to export restrictions, are sufficient secure and offer the best performance.

Coming next is the new pipe protocol for logging over named pipes.

This entry was posted in Delphi, Gurock Software, SmartInspect, SmartInspect 3.0. Bookmark the permalink. Post a comment or leave a trackback: Trackback URL.

4 Comments

  1. Holger Flick
    Posted July 29, 2008 at 2:49 pm | Permalink

    This is really a very good feature. However, will it be possible to use “custom” encryption algorithms or do you not provide any interfaces for that?

  2. Dennis Gurock
    Posted July 29, 2008 at 4:13 pm | Permalink

    We currently do not provide a way to use custom encryption algorithms, but you could always change the existing file protocol or better, copy and change it (it’s easier to update SmartInspect then).

    We do not provide an interface to change the algorithms for several reasons:

    - AES is the defacto standard algorithm for symmetric encryption and there aren’t many reasons not to use it

    - Besides implementing an interface in all three libraries, we would also need to add a plugin system to the Console to allow loading of alternative encryption algorithms. This would be way to costly for such a simple feature

  3. Thomas Mueller
    Posted July 30, 2008 at 9:34 am | Permalink

    Maybe I missed it, and it is alreayd in SmartInspect, but: Is there any compression option for the log files? My files tend to get rather large quickly and it is becoming a nuisance to tell the customer to ZIP them first.

  4. Dennis Gurock
    Posted July 30, 2008 at 3:49 pm | Permalink

    Thomas, we do not have a file compression option in SmartInspect at the moment. If we added it to SmartInspect (this is already on our feature request list), we would probably add this feature to the SmartInspect Router.

One Trackback

  1. By flickdotnet.de · SmartInspect 3.0 Preview on July 31, 2008 at 8:30 am

    […] Encryption of logged data […]

Post a Comment

Your email is never published nor shared.