Loading…
Saturday, February 8 • 14:10 - 14:50
Syscall Filtering and You

Sign up or log in to save this to your schedule and see who's attending!

With the inclusion of the seccomp filter functionality in Linux 3.5, Linux has a very powerful system call filter engine built into the kernel. Unfortunately, leveraging this new security tool can be difficult without some introduction. This presentation will explain the basics behind the Linux syscall filter, including the security advantages it can provide to different types of applications. The talk will also introduce libseccomp and explain how it solves many of the problems facing application developers who wish to make use of the Linux syscall filter. Finally, the talk will present a number of areas where interested developers can help contribute: the libseccomp project itself, userspace applications, and the Linux Kernel.

Speakers
avatar for Paul Moore

Paul Moore

Technical Leader, Cisco
Paul Moore has been involved in various Linux security efforts since 2004, at Hewlett-Packard, Red Hat, and Cisco. He currently maintains the SELinux, audit, and labeled networking subsystems in the Linux Kernel as well as the libseccomp userspace library.


Saturday February 8, 2014 14:10 - 14:50
Workshop room L1 - B410

Attendees (0)