To Log, or Not to Log! That Is the Question - DefCamp - 2022
Offered By: DefCamp via YouTube
Course Description
Overview
Explore the critical aspects of logging in cybersecurity through this DefCamp 2022 conference talk delivered by Amirhossein Aliakbarian, Application Security Engineer at Booking.com. Delve into the importance of logging, its security-related applications, and the challenges faced in the incident response process. Examine the complexities surrounding sensitive data handling, log delivery, storage, and analysis. Learn about access control measures and review practical logging examples involving credit card information, authentication tokens, and user input security. Gain insights into defining logging standards and structuring an effective logging system. Conclude with a Q&A session addressing audience inquiries on this crucial cybersecurity topic.
Syllabus
Intro
About Amir
About Booking Holding
Agenda
Why log
Security related usage
Incident response process
Challenges
Sensitive data
Not so trivial
Delivering logs
Storing logs
Analyzing logs
Access control
Logging examples
Credit card information
Authentication tokens
User input security
Base structure
Highlevel overview
Defining a standard
Data
Delivery
Storage
Audience Questions
Taught by
DefCamp
Related Courses
The Model of Post-Quantum Signature Using Verkle Tree - DefCamp - 2022DefCamp via YouTube The Anatomy of Wiper Malware - DefCamp - 2022
DefCamp via YouTube Internet Balkanization in an Era of Military Conflict - Dan Demeter - DefCamp - 2022
DefCamp via YouTube How We Analyzed and Built an Exploit PoC for CVE-2022-24086, a Magento RCE - Catalin Filip - DefCamp - 2022
DefCamp via YouTube Deceptive Ops and Honeynet Design - DefCamp - 2021
DefCamp via YouTube