SINOG 6.0 (English)

Slovenian Internet community meeting on Internet technologies.

Where: Tehnološki park Ljubljana, lokacija Brdo, Tehnološki park 19 (Google Maps)
Organizators: SINOG, Zavod go6, LTFE in Arnes
When: 14th May 2019
Participation fee: free for everyone (in the case of congestion sponsors and members of the Institute go6 and members of SINOG have priority for participation).
Limiting the number of participants: 150 (priority is given to sponsors and members of the Institute Go6 and members of SINOG).
Number of participants at previous meetings: Well over 150 technical experts from community.
Type of participants at the meeting: leading technical experts, managers and decision makers from a number of Slovenian companies (operators, equipment manufacturers, system integrators and others).
Hotel recommendation: Grand Hotel Union, City Hotel or something nearby

The Slovenian Operator Forum SINOG (Network Operators Group) was established in the autumn of 2013 under the auspices of the Institute go6 and combines network experts in various fields. SINOG was established with the aim to enhance the quality, performance, stability and security of Slovenian networks and network services, and actively encourage the exchange of ideas, knowledge and best practices among network professionals in Slovenia and beyond.

Slovenian IPv6 Summit was until recently the central event in Slovenian and the wider regional area, intended to monitor the progress, achievements and exchange of good practices in the transition to IPv6 and deployment to business environments and organizations. SINOG 4.0 was the first event where we joined both meetings under one name and received great interest of the professional sphere, as evidenced by numerous commendations and participants.

Because we appreciate and value your time we decided – based on your request – to concentrate all presentations in one day, so more people can attend the meeting.

About the programme (shortly):
Compliments, visible efficiency and remarkable response to the previous IPv6 Summits and SINOG meetings have given us the confirmation that it is necessary to continue with such events. We are pleased to be able to once again announce the wider international lecturing band. Their knowledge and experience in the field of IPv6 and operational topics will present the experts of world’s leading companies and organizations

Program srečanja / Agenda

Program SINOG 6.0 srečanja – 14. maj 2019

14. maj 2019ProgramPredavateljVideo
08:30 - 9:00Registracija
Opening plenary sessionSession chair: Jan Žorž
09:00 - 9:15 Pozdravni govori /
Welcome speeches
Jan Žorž, Zavod go6
Avgust Jauk, Arnes
dr. Mojca Volk, LTFE
Matjaž Straus Istenič,
SINOG chair
video
09:15 - 10:00Intent-based networkingIvan Pepelnjakvideo
10:00 - 10:30Peering SecuritySusan Forney
Hurricane Electric
video
10:30 - 11:00Coffee break
2nd plenary sessionChair: Avgust Jauk
11:00 - 11:30Edge Control, Serving traffic effectively to peopleBen Ryall
Facebook
Publishing of video recording is not permitted by the author.
11:30 - 12:00The Centralized InternetHisham Ibrahim
RIPE NCC
video
12:00 - 12:15Minute za pokrovitelje
Minutes for sponsors
Peter Reinhardt, Xenya
Žiga Baričič, Advant
video
12:15 - 13:00Kosilo / Lunch
3rd plenary sessionChair: Luka Manojlovič
13:00 - 13:30How to build your own mobile network - PPDR OneJanez Sterle
Internet Institute
video
13:30 - 14:00IPv6-only hostingPeter Stevens
Mythic Beasts
video
14:00 - 14:30SCION: A secure Internet ArchitectureMarkus Legner
Anapaya Systems
video
14:30 - 15:00Coffee break
4th plenary sessionChair: Urban Kunc
15:00 - 15:30Network Visibility on BudgetTom Kern
NIL
Publishing of video recording is not permitted by the author.
15:30 - 16:00WiFi DesignPro – Power vs Sensitivity and EM wave propagation complexityPeter Zalar
Advant
video
16:00 - 16:30Peering DB updateArnold Nipper
PeeringDB
video
16:30 - 17:00Zaključek in žrebanje nagrad /
Wrap-up and Raffle

Glavna nagrada:
Prihajajoči Oculus Quest!

Organizatorji dogodka si pridružujejo pravico do spremembe programa.

Predavatelji / Speakers

Predavatelji SINOG 6.0 srečanja – 14. maj 2019


Ivan Pepelnjak, ipSpace (SLO)

ivan_pepelnjakIvan Pepelnjak je naš daleč najbolj prodoren in ustvarjalen vrhunski strokovnjak s področja omrežnih tehnologij tako na področju WAN in LAN omrežij. Z omrežnimi tehnologijami se ukvarja že od leta 1985. Je eden prvih v svetu in nasploh slovenskih inženirjev, ki so si pridobili najprestižnejšo certifikacijo v industriji Cisco Certified Internetwork Expert (CCIE 1354). Ivan je znan je po številnih knjigah, člankih in objavah. Je redni pisec spletnega dnevnika ipSpace, kot tudi avtor svetovno znanih istoimenskih webinarjev s področja omrežne in strežniške virtualizacije, oblačnih storitev, SDN, VPN, IPv6 in arhitekture podatkovnih centrov. Kot dolgoletni strokovnjak in odličen poznavalec omrežnih tehnologij je zelo zaželjen in iskan po vsem svetu bodisi kot predavatelj ali kot svetovalec pri postavitvi novih podatkovnih centrov ali designa omrežij. Ivan je tudi gostujoči profesor na Fakulteti za računalništvo in informatiko Univerze v Ljubljani (FRI), kjer poučuje razvoj in design spletnih aplikacij, v svojem prostem času pa znan kot zagrizen športnik in ljubitelj alpinizma, kolesarjenja in turnega smučanja.

His presentation title is “Intent-Based Networking: Another Round of Hype?”
Remember Software Defined Networking (SDN)? It’s so last year – the industry has moved on to intent-based networking… which is often nothing more than another pile of hype.

The presentation will answer these questions:
  • Does “intent-based networking” mean anything?
  • Does it do more than manage device configurations?
  • Why is it so important to have feedback loops and post-change validation?
We’ll also touch on unicorns like machine-learning-driven intent and automated remediation, and try to figure out what could go wrong in an intent-based orchestration system.

Susan Forney, Hurricane Electric (USA)

Susan Forney is a network engineer at Hurricane Electric Internet Services, which operates the largest IPv6 backbone in the world in terms of number of connected networks. She has worked as a network engineer and architect at the Boeing Company, Microsoft, and Starbucks. She is a member of the Board of Directors of the North American Network Operators Group (NANOG). When she is not finding new peering partners or helping to advance the adoption of IPv6, Susan enjoys cycling, trail hiking, and every Star Wars movie ever made. She lives in Massachusetts with her husband, daughter, and Basset Hound.

Her presentation title is “Peering security”
Peering is fundamental to the Internet, but without considering its cost, peering can be expensive and ineffective. This talk looks at the basic economics of peering and explains techniques for getting the most from your investment.


Ben Ryall, Facebook (IRL)

Ben Ryall holds the role of Network Delivery Manager (EMEA), working in Facebook’s Edge Organisation and works with ISPs and Mobile Operators to deliver the best experience to the people using the Facebook product family.

Ben is an established, innovative and experienced Internet, network and infrastructure architect professional. Proven in delivering complex technical projects to meet business requirements, support growth and enable strategic development.

His presentation title is “Edge Control, Serving traffic effectively to people”
This presentation aims to explain to the audience the tools and systems Facebook have to control traffic that is served from the edge of the Facebook network, whilst answering some common questions that Facebook receive on Peering and Caching. It calls out for ISPs and Mobile Operators to work with us to continue to improve the user experience.”


Hisham Ibrahim, RIPE NCC

Hisham Ibrahim is the External Relations Officer – Technical Advisor (Middle East Regional Program Manager) at the RIPE NCC. (in charge for training programs, technical support and relations with RIPE NCC members and the MENOG community).

Hisham brings over a decade of exercise in the field of Internet technology and its governance. Prior to joining the RIPE NCC-ME office, Hisham held a number of senior technical positions including, IPv6 Program Manager at AFRINIC (2010-2014) and Network Operations Centre (NOC) Team Leader at the Egyptian Ministry of Communications and Information Technology (2005-2010).

Both from a technical and policy background, Hisham is active on several committees in various Network Operator Groups (NOGs), peering forums, IPv6 task forces and forums in Africa and the Middle East.

His presentation title is “The Centralized Internet”
This talk aims to discuss with the audience issues of centralization of the Internet and what does that mean moving forward with how networks are built nationally, regionally and globally.


Markus Legner, Anapaya Systems (CH)

Markus Legner is a postdoctoral researcher in the Network Security Group headed by Prof. Dr. Adrian Perrig at ETH Zurich, Switzerland. There he is working on  SCION, a next-generation path-aware Internet architecture that at the same time provides high security and high availability. In particular, he focuses on improving the control-plane security and investigating effects of end-host-based path selection on network properties.
Before joining the Network Security Group, Markus received his Ph.D. in theoretical physics from ETH Zurich in 2016.

His presentation title is “SCION: A secure Internet Architecture”. SCION is a next-generation secure Internet architecture that aims to replace BGP as the glue that connects all networks on the Internet. Built from the ground-up with security in mind, I will show how SCION addresses the main weaknesses of BGP with respect to security and availability. Furthermore, I will explain how SCION’s path architecture enables completely new type of properties and possibilities that are impossible to achieve with current technologies.


Janez Sterle, INTERNET INSTITUTE Ltd. (SLO)

Janez STERLE is a co-founder and CEO of INTERNET INSTITUTE Ltd. His main area of work concerns network design, planning, service management, testing and implementation in production networks for NFV, IPv6, QoS and QoE, LTE/4G and 5G mobile systems, NATO enabled tactical communication system; test, measurement and verification of state-of-the-art protocols and technologies. Throughout his R&D work he gained experience as lead architect and project lead in various national and international projects: GEN6 EU, ARCADIA EU, NEXES EU, MATILDA EU, 5GINFIRE EU. He holds Cisco CCAI certificate and various US patents in the field of SON systems. He is also a Qualified University Lecturer/Assistant for research and pedagogical areas at University of Ljubljana.

His presentation title is “How to build your own mobile network – PPDR One”
Public Protection and Disaster Relief facility for Outdoor and iNdoor 5G/NFV Experiments (PPDR ONE) is an extension of the 5GINFIRE ecosystem with a 5G/NFV enabled telco-grade development, testing and verification facility for experimentation with 5G network architectures and services for Public Protection and Disaster Relief (PPDR). With PPDR ONE, 5GINFIRE covers the public safety sector and incorporate capabilities to conduct laboratory and field 5G/NFV experiments designed for the needs of emergency response, disaster relief, and critical communications. More info: https://5ginfire.eu/ppdr-one-facility/


Peter Stevens, Mythic Beasts (UK)

Pete Stevens has led Mythic Beasts to be one of the first general purpose hosting providers to offer full IPv6 support and IPv6 only hosting with paying IPv6 only customer networks now in their fifth year of operation. When not being a network or linux admin he also runs quite fast, plays the piano quite well, sings badly and likes drinking beer but not necessarily in that order. He used to read physics at Cambridge University, now he reads physics to his toddler son.
 
His presentation title is “IPv6-only hosting”
Mythic Beasts offer IPv6 only hosting services including a Raspberry Pi cloud that does not and will never support IPv4. Whilst ‘No customer demand for IPv6’ is regularly taken as an article of faith by other providers, this talk looks at how IPv6 only hosting services are provisioned for many hundreds of customers and why avoiding IPv4 really does make your life better.
 

Tom Kern, Cyber security analyst, SIEM expert, NIL d.o.o. (SLO)

Tom is a member of the NIL SOC as Cyber Security Analyst. With his broad experience in deploying and maintaining various security products, he greatly contributed to SOC services delivery. Tom was also the lead SOC analyst for onboarding enterprise customer from financial sector. Now his work includes: system compromise detection, SIEM tuning, security event triage and investigation, IR processes definition, threat hunting, network security policy consultation.
 
His presentation title is “Complete Network Visibility on Budget”
Security operations often require investigations and forensics at a network level. To support that, we need to establish a robust and context-rich network visibility solution. There are commercial solutions available, but they often lack flexibility and integration with other products. In this technical presentation, I will show you how to start monitoring your network today without expensive gear.

Peter Zalar, Advant d.o.o. (SLO)
Peter Zalar Advant d.o.o.Peter Zalar, co-founder and employee of Advant d.o.o. From 1998, he was the head of technical support of the company until 2008. Since, he has been the project manager for the field of planning and implementation of passive and active network equipment of IT centers. Specializations and education cover areas of LAN / WAN passive / active optical and copper interconnecting equipment, active network equipment, WiFi wireless connectivity planning and UPS devices.

He is a specialist engineer with a certificate for the design of complex (enterprise) WiFi networks and troubleshooting. He is also a member of the WLA (Wireless LAN Association) organization. Mr. Zalar is a graduate electrical engineer in industrial electronics.

His presentation title is “WiFi DesignPro – Power vs Sensitivity and EM wave propagation complexity”
Nowadays, with the implication of WiFi connectivity and the growing number of connected devices, planning freedom is tightened with the help of professional software tools that fail to anticipate all the disturbing WiFi wireless network environment parameters. Presentation will emphasize issues of transmitting / receiving characteristics of WiFi access points in the “friendly” and “hostile” environments of the EM Wave propagation, and consequently the awareness of the importance of the baseline requirements for the design and deployment of wireless WiFi points in complex environments.

Existing WiFi networks can be improved with new admissions and their usability is extended. Additional skills rae required from the planner and the practitioner. With clear requirements and desires, a modern wireless network predicts useful coverage and number of users as a challenge. In the short presentation, problems will be presented.


Arnold Nipper, Chief Technology Evangelist: DE-CIX (GER)

Arnold Nipper is in the Internet industry since 1989. He was instrumental in setting up RIPE, DeNIC and the academic and research IP network in Germany while working at one of the first commercial ISP in Germany.

Co-founding DE-CIX in 1995, Arnold Nipper served as CTO/COO until recently and now holds the position as Chief Technology Evangelist. Since 2007 Arnold Nipper is also involved in PeeringDB as an Admin, serving as Director since November 2015.

His presentation title is “PeeringBD Update”
PeeringDB is around since more than 15 years now. And PeeringDB 2.0 also already is three years old. As we are the first time at at SINOG meeting we give a quick overview of what PeeringDB is and how it is set up. Next we look into figures about SI and their neighbouring countries. Then we highlight three tasks we have been working on the last months.

Pokrovitelji / Sponsors

 

Pokrovitelji SINOG 6.0 srečanja – 14. maj 2019


Generalna pokrovitelja srečanja

CISCO logo NIL logo



Veliki partnerji SINOG

flexoptixfacebook


Mala partnerja SINOG

RIPE NCC logo    Telemach


Pokrovitelji srečanja

advant logo XENYA logo


Organizatorji srečanja

 Zavod go6 logo arnes logo LTFE


 Medijski pokrovitelj

računalniške novice logo

SINOG 6.0

Strokovno srečanje tehnične skupnosti o internetnih tehnologijah.

Kje: Tehnološki park Ljubljana, lokacija Brdo, Tehnološki park 19 (Google Maps)
Organizatorji: Programski odbor SINOG, Zavod go6, LTFE in Arnes
Kdaj: 14. maj 2019
Cena udeležbe: brezplačno
Omejitev udeležencev: 150 (v primeru prezasedenosti dvorane imajo prednost pri udeležbi pokrovitelji, člani SINOG foruma in člani Zavoda go6)

SINOG (Slovenian Network Operators Group) je neodvisna skupnost, ki združuje omrežne strokovnjake različnih področij. Ustanovljena je bila z namenom povečati kakovost, učinkovitost, stabilnost in varnost slovenskih omrežij in omrežnih storitev ter dejavno vzpodbujati izmenjavo idej, znanja in dobre prakse med strokovnjaki v Sloveniji ter širše. Srečujemo se na letnem srečanju, polletnih tematskih delavnicah in mesečnih »Meetup« srečanjih. Osrednji dogodek skupnosti je letno SINOG srečanje, ki bo letos že šesto po vrsti.

Sprva smo letna SINOG srečanja organizacijsko pridružili slovenskemu IPv6 srečanju, ki je bil do nedavna največji osrednji dogodek v slovenskem in tudi širšem regijskem prostoru, namenjen spremljanju napredka in dosežkov ter izmenjavi dobrih praks pri prehodu na protokol IPv6 v organizacijah in poslovnih okoljih. Zadnji dve leti pa sta IPv6 in SINOG srečanje združeni pod enotnim imenom – SINOG srečanje.

Ker cenimo in spoštujemo vaš čas smo se letos na vašo željo odločili, da strnemo vsa predavanja na en dan in vam tako omogočimo lažjo udeležbo na vseh predavanjih SINOG srečanja. 

SINOG 6.0 srečanje nadaljuje dobro prakso predhodnih IPv6 in SINOG srečanj in združuje visoko-tehnološka predavanja vrhunskih mednarodnih in domačih strokovnjakov o aktualnih izzivih, reševanju le-teh in kratke predstavitve dosežkov domačih podjetij in organizacij.

Tematska delavnica o prepoznavanju in odzivanju na anomalije v omrežju

Omrežne strokovnjake in SINOG skupnost vabimo na tematsko delavnico SINOG 5.1 z naslovom “Prepoznavanje in odzivanje na anomalije v omrežju”.

Delavnica bo v četrtek, 4. aprila 2019, s pričetkom ob 16.30, v Veliki predavalnici Instituta “Jožef Stefan”, Jamova 39, Ljubljana.

Tematska delavnica bo obravnavala izzive, ki jih imajo tehniki pri zaznavanju anomalij v omrežju in kako se odzivati na konkretne varnostne grožnje. Nekatere anomalije prepoznamo hitro z dokaj enostavnimi orodji, pri drugih pomagajo le kompleksna orodja in veliko prakse ter inženirskega znanja. V delavnici bodo predstavljeni trije različni pristopi in dobre prakse, ki se izvajajo v poslovnem in operaterskem okolju.

Več o dogodku na povezavi: https://www.sinog.si/sinog/sinog-5-1/

Obvezna prijava na brezplačno delavnico je na spletni strani Eventbrite.

Vsebina predavanj

Vsebina predavanj tematske delavnice – SINOG 5.1
Prepoznavanje in odzivanje na anomalije v omrežju
4. april 2019

Bojan Zajc
Sodobna požarna pregrada in Layer 7 – ko potrebujemo več, kot le prepoznavo aplikacije

Kaj so požarne pregrade, danes bolj ali manj vsakdo ve. Razmeroma malokdo pa ve, da so nekatere nekoliko bolj ‘dlakocepske’, kakor druge. V bistvu je poznavanje različnih vrst požarnih pregrad in principov njihovega delovanja / razlik med njimi na izredno nizkem nivoju in vedno znova naletim na presenečenje, ko nekomu razlagam, kaj WatchGuard požarne pregrade zmorejo.

Tzv. ‘Enterprise’ požarne pregrade se s tem ne ukvarjajo, saj predvidevajo, da bomo to reševali z drugimi specializiranimi rešitvami. WatchGuard, ki je specialist za SME in močno distribuirana Enterprise okolja, pa je ravno na tem področju izredno močan. Pri odkrivanju anomalij, pa gre dinamično blokiranje z roko v roki z Dimension (u:demo p:visibility) – njihovim brezplačnim log&report strežnikom, kjer v Security dashboard-u potem lepo vidimo rekapitulacije najbolj pogosto blokiranih naslovov, protokolov, aplikacij, uporabnikov,…. Ko tu neke številke bistveno odstopajo od povprečja, hitro vemo, kaj moramo preveriti.

Inšpekcija prometa na L7 z aplikacijsko logiko je tu ključnega pomena, saj ravno ona generira tiste zadetke, kateri na koncu v Dimension statistiki ‘ven skačejo’ in pritegnejo našo pozornost.

 

Vedran Franjić
Behaviour and anomaly detection

Look into how Network Telemetry and Cisco Stealthwatch work together to illuminate fundamental security gaps deep within a network. Learn how you can leverage your deployed network as a vast, enterprise-wide automated sensor grid to protect against advance zero-day threats, detect anomaly changes in host behaviour, segmentation violations within your network and much more.

 

Vladimir Ban
Umetna inteligenca oz. kako zaznati napade, ki jih nihče ne zazna?

Anomalije v omrežju so lahko že same po sebi idealne za zaznavanje groženj in napadov. Pravi izziv ni kako narediti povezavo iz zaznane anomalije in neke konkretne varnostne grožnje. Pravi izziv je, kako anomalijo sploh zaznati. Nekatere anomalije lahko zaznamo na preprost način in s preprostimi orodji, nekatere pa so “navadnim” očem skrite.

Kdaj je sploh anomalija koristna ali celo potrebna za zaznavanje varnostnih groženj in na kakšen način lahko zaznavamo kompleksne anomalije, si bomo v teoriji in praksi pogledali v tem predavanju.

Predavatelji

Predavatelji tematske delavnice – SINOG 5.1
Prepoznavanje in odzivanje na anomalije v omrežju
4. april 2019

Bojan Zajc – SI System Integration – računalniški inženiring

Bojan Zajc je leta 1993 ustanovil SI System Integration. Sprva specializiran na rešitve za PC-Host/Mainframe povezljivost podjetja WRQ (kasneje Attachmate/MicroFocus),  se je vse bolj ukvarjal z različnimi aspekti varnosti v omrežjih malih in srednje velikih podjetij. Kot distributer WatchGuard rešitev se danes ukvarja pretežno z naprednimi požarnimi pregradami, varnimi brezžičnimi omrežji in večstopenjsko avtentikacijo.

 

Vedran Franjić – Cisco Systems Hrvatska

Vedran Franjić is a system engineer in Cisco responsible for Security technologies and SD-WAN. Born in Osijek Croatia and graduated from Faculty of Electrical Engineering and Computing Osijek. Worked over 4 years as System integrator prior to moving to Cisco. Experienced Network Engineer with a demonstrated history of working in the information technology and services industry. Skilled in System Administration, Network Administration, Network System Design and Security.

 

Vladimir Ban – A1 Slovenija

Vladimir Ban je vodilni ekspert za implementacijo ICT rešitev na A1 Slovenija. Po izobrazbi je diplomiran inženir matematike. V informatiki je aktiven že vse od leta 1997 in praktično od vsega začetka je njegovo glavno področje Varnost informacijskih sistemov. V prvih letih je bil usmerjen predvsem na področje šifrirnih algoritmov ter šifrirnih sistemov, kmalu pa je svoje delovanje razširil na celotno področje varnosti in zlorab Informacijskih sistemov. Na področju varnosti je sodeloval v različnih vlogah – bodisi kot svetovalec na temo varnostnih vprašanj, bodisi kot implementator kompleksnih varnostnih rešitev. V zadnjem obdobju se je usmeril predvsem na področje odkrivanja tehničnih varnostnih ranljivosti ter izzivov zaznavanja morebitnih zlorab informacijskega sistema. Neposredno je sodeloval pri več kot 50 varnostnih pregledih različnih informacijskih sistmov, podjetij in aplikacij. Vladimir tako na eni strani zelo podrobno pozna in razume konkretne tehnične vidike informacijske varnosti in zlorab, hkrati pa zelo dobro razume in pozna celovit pristop k zagotavljanju varnosti ter pravočasnega zaznavanja zlorab.

Program delavnice

Program tematske delavnice – SINOG 5.1
Prepoznavanje in odzivanje na anomalije v omrežju
4. april 2019 – Institut “Jozef Stefan”

ProgramPredavateljVideo
16:30 - 17:00Registracija udeležencev
17:00 - 17:10Pozdravni nagovor
17:10 - 17:40Sodobna požarna pregrada in Layer 7 - ko potrebujemo več, kot le prepoznavo aplikacijeBojan Zajc - Si System Integration, računalniški inženiring
video
17:40 - 18:05Cisco StealthWatch – Behaviour and anomaly detectionVedran Franjić - Cisco Systems Hrvatska
video
18:05 - 18:35Umetna inteligenca oz. kako zaznati napade, ki jih nihče ne zazna?Vladimir Ban - A1 Slovenija
video
18:35 - 19:30Druženje

Organizatorji dogodka si pridružujejo pravico do spremembe programa.

SINOG 5.1

Tematska delavnica o prepoznavanju in odzivanju na anomalije v omrežju

Datum in ura začetka: 4. april 2019 ob 16.30h
Lokacija: Velika predavalnica Instituta “Jožef Stefan”, Jamova cesta 39,  Ljubljana (Google Maps)
Organizatorji: Programski odbor SINOG, Zavod go6 in Institut “Jožef Stefan”
Maksimalno število udeležencev: 120 (v primeru prezasedenosti imajo prednost pri udeležbi pokrovitelji, člani SINOG foruma in člani Zavoda go6)
Cena udeležbe: brezplačno

Na tematski delavnici bomo obravnavali izzive, ki jih imajo tehniki pri zaznavanju anomalij v omrežju in predstavili, kako se je potrebno odzivati na konkretne varnostne grožnje. Nekatere anomalije prepoznamo hitro z dokaj enostavnimi orodji, pri drugih pomagajo le kompleksna orodja in veliko prakse ter inženirskega znanja. Predstavljeni bodo trije različni pristopi in dobre prakse, ki se izvajajo v poslovnem in operaterskem okolju.

Delavnico bo mogoče spremljati tudi v živo. Snemanje in prenos v živo zagotavlja ARNES.