System log analysis is probably the most boring topic in computer security, judging from most people’s reaction to it. Yet, this extremely important resource offers us a lot of options for examining and understanding what happens on our networks and systems. In this presentation we will look at some doctrines for log analysis that may be important in the future.
About Marcus Ranum
Marcus J. Ranum, Chief Security Officer of Tenable Security, Inc., is a world-renowned expert on security system design and implementation. Since the late 1980′s, he has designed a number of groundbreaking security products including the DEC SEAL, the TIS firewall toolkit, the Gauntlet firewall, and NFR’s Network Flight Recorder intrusion detection system. He has been involved in every level of operations of a security product business, from developer, to founder and CEO of NFR.
Follow Marcus on Twitter
