Test-driven Hardening: Crafting Seccomp Profiles within Test Pipeline - GoLab Discovery - 12:00

Test-driven Hardening: Crafting Seccomp Profiles within Test Pipeline

Speaker

Alessio Greggi

Software Engineer @ Suse

Place

GoLab Discovery

Length

25 min

When

November 12th, 2024

12:00

Test-driven Hardening: Crafting Seccomp Profiles within Test Pipeline - GoLab Discovery - 12:00

Abstract

This talk introduces a method to enhancing the security of software projects by seamlessly integrating Seccomp profile generation into the test pipeline. This methodology emphasizes comprehensive test coverage of the application, encompassing both integration and unit tests.
By leveraging tracing tools such as perf, strace, and the newly developed Harpoon, developers can automate the extraction of system calls from tested functions. Harpoon, a personal project designed specifically for this purpose, offers a unique capability to trace system calls from user-space functions.
By focusing on extensive test coverage and leveraging tracing tools, developers can ensure robust protection against vulnerabilities without compromising development efficiency.

GoLab is a conference made by Develer.
Develer is a company based in Campi Bisenzio, near Florence. Our motto is : "Technology to give life to your products". We produce hardware and software to create exceptional products and to improve industrial processes and people's well being.
In Develer we have passion for the new technologies and we offer our clients effective solutions that are also efficient, simple and safe for the end users. We also believe in a friendly and welcoming environment where anybody can give their contribution. This passion and this vision are what we've been driven to organize our conference "made by developers for developers".

Subscribe to our newsletter

We hate spam just as much as you do, which is why we promise to only send you relevant communications. We respect your privacy and will never share your information with third parties.