Back To Schedule
Saturday, February 8 • 14:10 - 14:50
Syscall Filtering and You

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

With the inclusion of the seccomp filter functionality in Linux 3.5, Linux has a very powerful system call filter engine built into the kernel. Unfortunately, leveraging this new security tool can be difficult without some introduction. This presentation will explain the basics behind the Linux syscall filter, including the security advantages it can provide to different types of applications. The talk will also introduce libseccomp and explain how it solves many of the problems facing application developers who wish to make use of the Linux syscall filter. Finally, the talk will present a number of areas where interested developers can help contribute: the libseccomp project itself, userspace applications, and the Linux Kernel.

avatar for Paul Moore

Paul Moore

Principal Software Engineer, Microsoft
Paul Moore has been involved in various Linux platform security efforts since 2004 at Hewlett-Packard, Red Hat, Cisco, and Microsoft. He currently maintains the SELinux, audit, and labeled networking subsystems in the Linux Kernel as well as the libseccomp userspace library.

Saturday February 8, 2014 14:10 - 14:50 CET
Workshop room L1 - B410

Attendees (0)