PACS System 0.1.0
PACS DICOM system library
Loading...
Searching...
No Matches
atna_service_auditor.cpp
Go to the documentation of this file.
1
6#include "kcenon/pacs/security/atna_service_auditor.h"
7
8namespace kcenon::pacs::security {
9
10// =============================================================================
11// Construction
12// =============================================================================
13
14atna_service_auditor::atna_service_auditor(
15 const syslog_transport_config& config,
16 std::string audit_source_id)
17 : audit_source_id_(std::move(audit_source_id)),
18 transport_(config) {}
19
20atna_service_auditor::atna_service_auditor(
21 atna_service_auditor&& other) noexcept
22 : audit_source_id_(std::move(other.audit_source_id_)),
23 transport_(std::move(other.transport_)),
24 enabled_(other.enabled_.load(std::memory_order_relaxed)),
25 events_sent_(other.events_sent_.load(std::memory_order_relaxed)),
26 events_failed_(other.events_failed_.load(std::memory_order_relaxed)) {}
27
28atna_service_auditor& atna_service_auditor::operator=(
29 atna_service_auditor&& other) noexcept {
30 if (this != &other) {
31 audit_source_id_ = std::move(other.audit_source_id_);
32 transport_ = std::move(other.transport_);
33 enabled_.store(other.enabled_.load(std::memory_order_relaxed),
34 std::memory_order_relaxed);
35 events_sent_.store(other.events_sent_.load(std::memory_order_relaxed),
36 std::memory_order_relaxed);
37 events_failed_.store(
38 other.events_failed_.load(std::memory_order_relaxed),
39 std::memory_order_relaxed);
40 }
41 return *this;
42}
43
44// =============================================================================
45// DICOM Service Audit Methods
46// =============================================================================
47
48void atna_service_auditor::audit_instance_stored(
49 const std::string& source_ae,
50 const std::string& dest_ae,
51 const std::string& study_uid,
52 const std::string& patient_id,
53 bool success) {
54
55 if (!enabled_.load(std::memory_order_relaxed)) {
56 return;
57 }
58
59 auto outcome = success ? atna_event_outcome::success
60 : atna_event_outcome::serious_failure;
61
62 auto msg = atna_audit_logger::build_dicom_instances_transferred(
63 audit_source_id_,
64 source_ae, // source AE
65 "", // source IP (not available at service level)
66 dest_ae, // destination AE
67 "", // destination IP (not available at service level)
68 study_uid,
69 patient_id,
70 true, // is_import (SCP receiving)
71 outcome);
72
73 send_audit(msg);
74}
75
76void atna_service_auditor::audit_query(
77 const std::string& calling_ae,
78 const std::string& called_ae,
79 const std::string& query_level,
80 bool success) {
81
82 if (!enabled_.load(std::memory_order_relaxed)) {
83 return;
84 }
85
86 auto outcome = success ? atna_event_outcome::success
87 : atna_event_outcome::serious_failure;
88
89 // Use query level as query_data for the audit trail
90 auto msg = atna_audit_logger::build_query(
91 audit_source_id_,
92 calling_ae,
93 "", // user IP (not available at service level)
94 "QueryLevel=" + query_level + " CalledAE=" + called_ae,
95 "", // patient_id (not available from query keys here)
96 outcome);
97
98 send_audit(msg);
99}
100
101void atna_service_auditor::audit_authentication(
102 const std::string& user_id,
103 bool is_login,
104 bool success) {
105
106 if (!enabled_.load(std::memory_order_relaxed)) {
107 return;
108 }
109
110 auto outcome = success ? atna_event_outcome::success
111 : atna_event_outcome::serious_failure;
112
113 auto msg = atna_audit_logger::build_user_authentication(
114 audit_source_id_,
115 user_id,
116 "", // user IP (not available at this level)
117 is_login,
118 outcome);
119
120 send_audit(msg);
121}
122
123void atna_service_auditor::audit_security_alert(
124 const std::string& user_id,
125 const std::string& alert_description) {
126
127 if (!enabled_.load(std::memory_order_relaxed)) {
128 return;
129 }
130
131 auto msg = atna_audit_logger::build_security_alert(
132 audit_source_id_,
133 user_id,
134 "", // user IP (not available at this level)
135 alert_description);
136
137 send_audit(msg);
138}
139
140// =============================================================================
141// Enable / Disable
142// =============================================================================
143
144void atna_service_auditor::set_enabled(bool enabled) noexcept {
145 enabled_.store(enabled, std::memory_order_relaxed);
146}
147
148bool atna_service_auditor::is_enabled() const noexcept {
149 return enabled_.load(std::memory_order_relaxed);
150}
151
152// =============================================================================
153// Statistics
154// =============================================================================
155
156size_t atna_service_auditor::events_sent() const noexcept {
157 return events_sent_.load(std::memory_order_relaxed);
158}
159
160size_t atna_service_auditor::events_failed() const noexcept {
161 return events_failed_.load(std::memory_order_relaxed);
162}
163
164void atna_service_auditor::reset_statistics() noexcept {
165 events_sent_.store(0, std::memory_order_relaxed);
166 events_failed_.store(0, std::memory_order_relaxed);
167}
168
169// =============================================================================
170// Configuration Access
171// =============================================================================
172
173const std::string& atna_service_auditor::audit_source_id() const noexcept {
174 return audit_source_id_;
175}
176
177const atna_syslog_transport& atna_service_auditor::transport() const noexcept {
178 return transport_;
179}
180
181// =============================================================================
182// Private Helpers
183// =============================================================================
184
185void atna_service_auditor::send_audit(const atna_audit_message& message) {
186 auto xml = atna_audit_logger::to_xml(message);
187 auto result = transport_.send(xml);
188
189 if (result.is_ok()) {
190 events_sent_.fetch_add(1, std::memory_order_relaxed);
191 } else {
192 events_failed_.fetch_add(1, std::memory_order_relaxed);
193 }
194}
195
196} // namespace kcenon::pacs::security
atna_service_auditor.h
High-level facade for ATNA audit logging in DICOM services.
kcenon::pacs::security::atna_audit_logger::build_dicom_instances_transferred
static atna_audit_message build_dicom_instances_transferred(const std::string &source_id, const std::string &source_ae, const std::string &source_ip, const std::string &dest_ae, const std::string &dest_ip, const std::string &study_uid, const std::string &patient_id="", bool is_import=true, atna_event_outcome outcome=atna_event_outcome::success)
Build DICOM Instances Transferred audit message (C-STORE, C-MOVE)
Definition atna_audit_logger.cpp:228
kcenon::pacs::security::atna_audit_logger::to_xml
static std::string to_xml(const atna_audit_message &message)
Serialize an audit message to RFC 3881 XML.
Definition atna_audit_logger.cpp:18
kcenon::pacs::security::atna_audit_logger::build_security_alert
static atna_audit_message build_security_alert(const std::string &source_id, const std::string &user_id, const std::string &user_ip, const std::string &alert_description, atna_event_outcome outcome=atna_event_outcome::serious_failure)
Build Security Alert audit message.
Definition atna_audit_logger.cpp:333
kcenon::pacs::security::atna_audit_logger::build_user_authentication
static atna_audit_message build_user_authentication(const std::string &source_id, const std::string &user_id, const std::string &user_ip, bool is_login, atna_event_outcome outcome=atna_event_outcome::success)
Build User Authentication audit message (login/logout)
Definition atna_audit_logger.cpp:366
kcenon::pacs::security::atna_audit_logger::build_query
static atna_audit_message build_query(const std::string &source_id, const std::string &user_id, const std::string &user_ip, const std::string &query_data, const std::string &patient_id="", atna_event_outcome outcome=atna_event_outcome::success)
Build Query audit message (C-FIND, QIDO-RS)
Definition atna_audit_logger.cpp:393
kcenon::pacs::security::atna_service_auditor
High-level facade for emitting ATNA audit events from DICOM services.
Definition atna_service_auditor.h:52
kcenon::pacs::security::atna_service_auditor::events_failed
size_t events_failed() const noexcept
Get the number of audit event send failures.
Definition atna_service_auditor.cpp:160
kcenon::pacs::security::atna_service_auditor::audit_authentication
void audit_authentication(const std::string &user_id, bool is_login, bool success)
Audit a User Authentication event.
Definition atna_service_auditor.cpp:101
kcenon::pacs::security::atna_service_auditor::set_enabled
void set_enabled(bool enabled) noexcept
Enable or disable audit event emission.
Definition atna_service_auditor.cpp:144
kcenon::pacs::security::atna_service_auditor::events_sent
size_t events_sent() const noexcept
Get the number of audit events successfully sent.
Definition atna_service_auditor.cpp:156
kcenon::pacs::security::atna_service_auditor::enabled_
std::atomic< bool > enabled_
Whether audit is enabled.
Definition atna_service_auditor.h:205
kcenon::pacs::security::atna_service_auditor::is_enabled
bool is_enabled() const noexcept
Check if audit event emission is enabled.
Definition atna_service_auditor.cpp:148
kcenon::pacs::security::atna_service_auditor::audit_source_id_
std::string audit_source_id_
Audit source identifier (e.g., "PACS_SYSTEM_01")
Definition atna_service_auditor.h:199
kcenon::pacs::security::atna_service_auditor::audit_query
void audit_query(const std::string &calling_ae, const std::string &called_ae, const std::string &query_level, bool success)
Audit a C-FIND (Query) event.
Definition atna_service_auditor.cpp:76
kcenon::pacs::security::atna_service_auditor::send_audit
void send_audit(const atna_audit_message &message)
Send an audit message via syslog transport.
Definition atna_service_auditor.cpp:185
kcenon::pacs::security::atna_service_auditor::transport
const atna_syslog_transport & transport() const noexcept
Get the underlying transport (for advanced use)
Definition atna_service_auditor.cpp:177
kcenon::pacs::security::atna_service_auditor::atna_service_auditor
atna_service_auditor(const syslog_transport_config &config, std::string audit_source_id)
Construct an auditor with syslog transport configuration.
Definition atna_service_auditor.cpp:14
kcenon::pacs::security::atna_service_auditor::events_failed_
std::atomic< size_t > events_failed_
Definition atna_service_auditor.h:209
kcenon::pacs::security::atna_service_auditor::audit_security_alert
void audit_security_alert(const std::string &user_id, const std::string &alert_description)
Audit a Security Alert event (e.g., access denied)
Definition atna_service_auditor.cpp:123
kcenon::pacs::security::atna_service_auditor::audit_source_id
const std::string & audit_source_id() const noexcept
Get the audit source identifier.
Definition atna_service_auditor.cpp:173
kcenon::pacs::security::atna_service_auditor::events_sent_
std::atomic< size_t > events_sent_
Statistics.
Definition atna_service_auditor.h:208
kcenon::pacs::security::atna_service_auditor::operator=
atna_service_auditor & operator=(const atna_service_auditor &)=delete
kcenon::pacs::security::atna_service_auditor::reset_statistics
void reset_statistics() noexcept
Reset statistics counters.
Definition atna_service_auditor.cpp:164
kcenon::pacs::security::atna_service_auditor::transport_
atna_syslog_transport transport_
Syslog transport for sending audit messages.
Definition atna_service_auditor.h:202
kcenon::pacs::security::atna_service_auditor::audit_instance_stored
void audit_instance_stored(const std::string &source_ae, const std::string &dest_ae, const std::string &study_uid, const std::string &patient_id, bool success)
Audit a C-STORE (DICOM Instances Transferred) event.
Definition atna_service_auditor.cpp:48
kcenon::pacs::security::atna_syslog_transport
Sends ATNA audit messages via Syslog protocol.
Definition atna_syslog_transport.h:164
kcenon::pacs::security::atna_syslog_transport::send
kcenon::pacs::VoidResult send(const std::string &xml_message)
Send an RFC 3881 XML audit message via Syslog.
Definition atna_syslog_transport.cpp:137
kcenon::pacs::security::atna_audit_message
Complete RFC 3881 audit message.
Definition atna_audit_logger.h:235
kcenon::pacs::security::syslog_transport_config
Configuration for the Syslog transport.
Definition atna_syslog_transport.h:102