Squash Your Security Bugs, Before They Squash You!

Опубликовано 17 августа 2016, 22:30

Modern software is fraught with bugs that allow hackers to overtake and control computing systems. The current approach to dealing with these attacks invites the criminal hacker into the software design cycle, resulting in great losses to customers and developers. In this talk, I'll focus on a better approach to building secure software that leverages security vulnerability analysis to find the bugs that hackers love, long before they can be exploited. This approach to secure software development is a powerful one, but also very expensive. To address this issue, I will introduce the Testudo project that is developing novel hardware and software technologies to massively scale the performance of security vulnerability analyses by pushing them into the field where they run continuously but with imperceptible performance impact.