Vulnerable C++ - Peter Sommerlad - CppNorth 2023

Sdílet
Vložit
  • čas přidán 28. 04. 2024
  • www.cppnorth.ca​
    ---
    Vulnerable C++ - Peter Sommerlad - CppNorth 2023
    Programming languages contain features that could cause code to behave badly. Either by creating hazards in safety critical software, or by creating entry points for attacks in security-critical software.
    ISO SC22 WG23 working group collects common language vulnerabilities and provides standards that map the common vulnerabilities to specific programming languages and their mitigations.
    This talk will give an overview of typical vulnerabilities and will demonstrate examples on how C++ maps to those generic vulnerabilities and how the upcoming standard 24772-10 provides advice for mitigation.
    ---
    Slides: github.com/CppNorth/CppNorth_...
    Sponsored By:
    think-cell: www.think-cell.com/cppnorth
    JetBrains: www.jetbrains.com/
    ---
    Peter Sommerlad
    Peter Sommerlad is a consultant and trainer for Safe Modern C++ and Agile Software Engineering. Peter was professor at and director of IFS Institute for Software at FHO/HSR Rapperswil, Switzerland until February 2020. Peter is co-author of POSA Vol.1 and Security Patterns. He inspired the C++ IDE Cevelop with a unique C++ feedback, refactoring, and code modernization experience. Peter is a member of MISRA-C++, Hillside, ACM, IEEE Computer Society, ACCU, ISO WG23 and the ISO WG21 C++ committee.
    ---
    CppNorth is an annual C++ conference held in Toronto, Canada.
    - Annual CppNorth C++ conference: cppnorth.ca/
    - CppNorth Twitter: / cppnorth
    ---
    CZcams Videos Edited & Optimised by Digital Medium: events.digital-medium.co.uk
    #cppnorth #cpp #cppprogramming
  • Věda a technologie

Komentáře • 3

  • @Roibarkan
    @Roibarkan Před 6 měsíci +4

    43:53 Herb Sutter’s talk about this taxonomy: czcams.com/video/ARYP83yNAWk/video.html

  • @Heater-v1.0.0
    @Heater-v1.0.0 Před 6 měsíci +3

    Any professional software engineer concerned with vulnerabilities (or needs correctness, robustness, reliability, safety...) in the code they write should be using a language that helps provide that. Not one in which it is so easy to make fatal mistakes. If one is going to rigorously follow hundreds of coding guidelines and rules is it not better to use a tool that enforces them by default. That tool being the language. I'd go as far as to say it is professional negligence to not use such a safe language.

Další v pořadí
Automatické přehrávání
Rust and RAII Memory Management - Computerphile24:22Rust and RAII Memory Management - Computerphile
Rust and RAII Memory Management - ComputerphileComputerphile
zhlédnutí 208K
New Algorithms in C++23 - Conor Hoekstra - CppNorth 20231:29:56New Algorithms in C++23 - Conor Hoekstra - CppNorth 2023
New Algorithms in C++23 - Conor Hoekstra - CppNorth 2023CppNorth
zhlédnutí 3,9K
Master Pointers in C: 10X Your C Coding!14:12Master Pointers in C: 10X Your C Coding!
Master Pointers in C: 10X Your C Coding!Dave's Garage
zhlédnutí 254K
Final muy inesperado 😨01:00Final muy inesperado 😨
Final muy inesperado 😨Juan De Dios Pantoja
zhlédnutí 48M
Genial gadget para almacenar y lavar lentes de Let's GLOW00:26Genial gadget para almacenar y lavar lentes de Let's GLOW
Genial gadget para almacenar y lavar lentes de Let's GLOWLet's GLOW! Spanish
zhlédnutí 36M
JÍM POUZE OBLÍBENÁ JÍDLA YOUTUBERŮ...12:15JÍM POUZE OBLÍBENÁ JÍDLA YOUTUBERŮ...
JÍM POUZE OBLÍBENÁ JÍDLA YOUTUBERŮ...Attack
zhlédnutí 188K
NEJSILNĚJŠÍ KAFE? Jak to chutná? ☕️00:46NEJSILNĚJŠÍ KAFE? Jak to chutná? ☕️
NEJSILNĚJŠÍ KAFE? Jak to chutná? ☕️AtiShow
zhlédnutí 434K
Typical C++, but Why? - Björn Fahller - C++ on Sea 202350:49Typical C++, but Why? - Björn Fahller - C++ on Sea 2023
Typical C++, but Why? - Björn Fahller - C++ on Sea 2023cpponsea
zhlédnutí 12K
Why foreign keys are Evil. Append-Only and Soft-Delete - Peter Ibragimov | ITAM: BACKEND MEETUP12:33Why foreign keys are Evil. Append-Only and Soft-Delete – Peter Ibragimov | ITAM: BACKEND MEETUP
Why foreign keys are Evil. Append-Only and Soft-Delete - Peter Ibragimov | ITAM: BACKEND MEETUPIT at MISIS
zhlédnutí 826
How AI 'Understands' Images (CLIP) - Computerphile18:05How AI 'Understands' Images (CLIP) - Computerphile
How AI 'Understands' Images (CLIP) - ComputerphileComputerphile
zhlédnutí 75K
Intro to the Zig Programming Language • Andrew Kelley • GOTO 202250:14Intro to the Zig Programming Language • Andrew Kelley • GOTO 2022
Intro to the Zig Programming Language • Andrew Kelley • GOTO 2022GOTO Conferences
zhlédnutí 278K
C++ Features You Might Not Know - Jonathan Müller - C++ on Sea 202350:42C++ Features You Might Not Know - Jonathan Müller - C++ on Sea 2023
C++ Features You Might Not Know - Jonathan Müller - C++ on Sea 2023cpponsea
zhlédnutí 50K
Safer C++ with MISRA-C++ 2023 - Peter Sommerlad - NDC TechTown 20231:04:39Safer C++ with MISRA-C++ 2023 - Peter Sommerlad - NDC TechTown 2023
Safer C++ with MISRA-C++ 2023 - Peter Sommerlad - NDC TechTown 2023NDC Conferences
zhlédnutí 1,3K
Delivering Safe C++ - Bjarne Stroustrup - CppCon 20231:29:16Delivering Safe C++ - Bjarne Stroustrup - CppCon 2023
Delivering Safe C++ - Bjarne Stroustrup - CppCon 2023CppCon
zhlédnutí 123K
C++ Feature Coroutines, Beginner Friendly - Andreas Fertig - CppNorth 20231:15:41C++ Feature Coroutines, Beginner Friendly - Andreas Fertig - CppNorth 2023
C++ Feature Coroutines, Beginner Friendly - Andreas Fertig - CppNorth 2023CppNorth
zhlédnutí 2,3K
The Last Algorithms Course You'll Need by ThePrimeagen | Preview16:44The Last Algorithms Course You'll Need by ThePrimeagen | Preview
The Last Algorithms Course You'll Need by ThePrimeagen | PreviewFrontend Masters
zhlédnutí 296K
Microsoft’s “M1” Moment is Here09:28Microsoft’s “M1” Moment is Here
Microsoft’s “M1” Moment is HereTechLinked
zhlédnutí 530K
I had no idea SHEIN sold PC parts…27:10I had no idea SHEIN sold PC parts…
I had no idea SHEIN sold PC parts…Linus Tech Tips
zhlédnutí 1,4M
Cách sửa này được không các bạn?01:00Cách sửa này được không các bạn?
Cách sửa này được không các bạn?Cơ Khí Toàn Nghĩa
zhlédnutí 799K
Why spend $10.000 on a flashlight when these are $200🗿00:12Why spend $10.000 on a flashlight when these are $200🗿
Why spend $10.000 on a flashlight when these are $200🗿NIGHTOPERATOR
zhlédnutí 16M
New AI Feature: Gaslighting 🫣00:59New AI Feature: Gaslighting 🫣
New AI Feature: Gaslighting 🫣Marques Brownlee
zhlédnutí 1,2M
The Apple Vision Pro Is A Total Failure...22:50The Apple Vision Pro Is A Total Failure...
The Apple Vision Pro Is A Total Failure...SomeOrdinaryGamers
zhlédnutí 490K
iPhone 15 Pro Max VS Kamera za 100.000kč!00:36iPhone 15 Pro Max VS Kamera za 100.000kč!
iPhone 15 Pro Max VS Kamera za 100.000kč!Pokeccc
zhlédnutí 202K
Subscribe for more!! #procreate #logoanimation #roblox00:11Subscribe for more!! #procreate #logoanimation #roblox
Subscribe for more!! #procreate #logoanimation #robloxAnimations by danny
zhlédnutí 3,3M