Test-driven Hardening: Crafting Seccomp Profiles within Test Pipeline

This talk introduces a method to enhancing the security of software projects by seamlessly integrating Seccomp profile generation into the test pipeline. This methodology emphasizes comprehensive test coverage of the application, encompassing both integration and unit tests.

LEVEL: Intermediate

Place
GoLab Discovery
Length
25 min
When
November 12th, 2024
12:00

Abstract

This talk introduces a method to enhancing the security of software projects by seamlessly integrating Seccomp profile generation into the test pipeline. This methodology emphasizes comprehensive test coverage of the application, encompassing both integration and unit tests.
By leveraging tracing tools such as perf, strace, and the newly developed Harpoon, developers can automate the extraction of system calls from tested functions. Harpoon, a personal project designed specifically for this purpose, offers a unique capability to trace system calls from user-space functions.
By focusing on extensive test coverage and leveraging tracing tools, developers can ensure robust protection against vulnerabilities without compromising development efficiency.

Slides

Video

GoLab is a conference made by Develer.
Develer is a company based in Campi Bisenzio, near Florence. Our motto is : "Technology to give life to your products". We produce hardware and software to create exceptional products and to improve industrial processes and people's well being.
In Develer we have passion for the new technologies and we offer our clients effective solutions that are also efficient, simple and safe for the end users. We also believe in a friendly and welcoming environment where anybody can give their contribution. This passion and this vision are what we've been driven to organize our conference "made by developers for developers".


Subscribe to our newsletter

We hate spam just as much as you do, which is why we promise to only send you relevant communications. We respect your privacy and will never share your information with third parties.
©2024 GoLab | The international conference on Go in Florence-Design & devCantiere Creativo-Made withDatoCMS