Logging is without a doubt one of the best things a company can do protect themselves. Logs are a time-stamped documentation of events relating to particular software or application. Through the use of something like a syslog daemon, they are automatically created and gathered. They can provide history on who accessed a certain network, what they did and more.
They can even help companies identify certain issues or events, so they can go back and fix them before they become major problems. However, while logging is great for security, how can you ensure your logs themselves are secure?
When hackers get into your systems, one of the first things they will try to do is access your logs. If hackers or others with nefarious ideas get a hold of your logs, it could spell disaster. If they can get into the logs, they can simply erase any evidence of their presence, leaving you unaware that you have been hacked in the first place. And with data breaches on the rise, the security of your company is more important than ever.
Secure Logging With Blockchain
One way that has the potential to help when it comes to secure logging is by using blockchain technology. The blockchain is essentially an open and distributed ledger that can record transactions in a permanent way that can be verified. The blockchain is resistant to the modification of data, which makes it a great candidate for protecting and securing logs.
Another benefit of using blockchain to secure logs is the fact that ledger is stored on multiple different computers, called nodes. So if one computer is hacked, the entire ledger isn’t at risk. Also, all of the nodes essentially agree on what the correct data or information is and each block has a hash, which ensures everything is accurate.
That means someone would need to somehow hack the majority of the nodes at the same time and make the exact same change for their presence in the logs to be untraceable. This would require a lot of computational power, which most people or organizations simply don’t have access to. It is this “tamper-proof” nature of blockchain that makes it a great candidate for securing logs.
Another great thing about this solution is that it could be used by a wide range of people. Whether you are a large company or just a single individual, the solution could help keep your logs more secure and accurate. Of course, with how new the entire technology is, there is still a lot of work, research and testing to be done. There are currently no public blockchain systems used for writing logs, but it is certainly a plausible use case at some point.
Public or Private Network
If people were to ever use blockchain to secure logging, they would have to make a big decision. Do you use a private or a public network? While you might inherently think a private network will offer up the best security, that isn’t always the case, as Alpine Security advises. It is actually the diversity and distribution of your network that dictates how secure the network will be.
If all of your nodes are at the same place (like many private networks), it makes it much easier for hackers to get in and erase any evidence of them being there. However, if they are spread out and diversified, hackers will have a much more difficult time. As a result, perhaps using a public network (which helps achieve the most diversity possible), might be the way to go. Of course, be sure to reference the company policies, potentially encrypt the network and consider all options before making a choice.
In conclusion, hopefully, this article has been able to help you learn how blockchain can potentially be a good solution for secure logging in the future.