K2B Audit Security considerations

A K2B Audit application has three basic components:
  • The application itself (i.e. the application been audited)
  • The audit analysis objects
  • The audit management objects

There are no special considerations for deploying the application itself but to be sure it does not accidentally contain audit analysis or management objects that you do not want in it.

Audit analysis objects

Are used to process and query audit data. They do not change audit data but may be used to understand your application data base. They should be deployed to different web application. One having more restrictive access than the application itself. The list of main audit analysis objects follows:

  • K2BAuditAnalyzer.UI.Home
  • K2BAuditAnalyzer.UI.ConvertAuditLog
  • K2BAuditAnalyzer.AnalyzeByApplicationDataMain
  • K2BAuditAnalyzer.SerialAuditConversionMain
  • K2BAuditAnalyzer.PurgeEarlierThanGivenDate
  • K2BAuditAnalyzer.UI.PurgeEarlierThanGivenDate
  • K2BAuditAnalyzer.PurgeLastYearAuditQuery

Audit management objects

Are critical in terms of security. Having access to them may be used to understand your application data base and to start/stop auditing. They are usually not public. The list of main audit management objects follows: