2019 SouthEast LinuxFest; C is the basis of much of the Linux and embedded ecosystem despite it's reputation as the source for security lapses. This talk goes over common bad practices and anti-patterns from years working in commercial and open-source projects. We then cover best practices and patterns based on security guidelines such as CERT and MISRA. Topics includes large scale physical and API design, error handling, enhanced security features of C11 an C17, and usage of increasing sophisticated static and dynamic tools to assure security.
Jean Pierre LeJacq - C best and worst security practices
2019 SouthEast LinuxFest; C is the basis of much of the Linux and embedded ecosystem despite it's reputation as the source for security lapses. This talk goes over common bad practices and anti-patterns from years working in commercial and open-source projects. We then cover best practices and patterns based on security guidelines such as CERT and MISRA. Topics includes large scale physical and API design, error handling, enhanced security features of C11 an C17, and usage of increasing sophisticated static and dynamic tools to assure security.
0 Comments