01.06, 22:30–23:30 (Europe/Berlin), ZKM Vortragssaal
Sprache: English
A gentle introduction into the security concepts offered by modern POSIX systems: Kernel Sandboxing and Privilege Separation
This talk will cover two concepts that are crucial in modern applications: Sandboxing and Process Separation, as well as the combination and necessity of these two.
As programmers, we often make tiny silly mistakes. Tiny silly mistakes, that lead to unnoticeable bugs, which might be exploited in the most dangerous and ugliest ways. Acknowledging this fact, by restricting the powers of a process, makes the impact of potential exploits much harder.
After this talk, the audience will know about the necessity of sandboxing, the history of security in operating systems in general, as well as the current mechanisms used to secure modern applications.
N/A
Emil has been involved with systems programming since 2020. They have used the C programming language extensively and is aware of several common pitfalls. In early 2021, they spent their time to learn several in-process sandboxing mechanisms and techniques such as privilege separation.
Nowadays they converge towards insanity while studying pure mathematics, occasionally making open-source contributions to projects such as Rosenpass, cURL, and Tor.