Uninitialized Variables in C++ Software Security and C++ Memory Management - JF Bastien
3.9 هزار بار بازدید -
هفته قبل
-
The Online C++ Conference -
The Online C++ Conference - https://cpponline.uk/ -- @cpponlineconf
---
Uninitialized Variables in C++ Software Security and C++ Memory Management - JF Bastien
An in-depth exploration of a subtle aspect of systems programming: uninitialized memory. What are in the bytes before a type exists? This talk dives into the complex world of uninitialized variables, unraveling its mysteries and practical implications. We’ll discuss software security with concrete examples of security vulnerabilities such as information leaks, attacker-controlled values, and use-after-free; performance impact is then explained in-depth; finally, we’ll present mitigations and best practices. The talk delves into memory management on the stack and heap memory, explaining how uninitialized memory issues manifest in each.
Slides: https://github.com/CppOnlineConferenc...
---
JF Bastien
JF is a distinguished engineer at Woven by Toyota. He chairs the evolution of the C++ programming language. JF has worked on a variety of compilers for a variety of programming languages, implementing language features, improving performance / security / safety, targeting novel architectures, and other fun things. See jfbastien.com
---
Streamed & Edited by Digital Medium Ltd - online.digital-medium.co.uk
---
C++Online - The Online C++ Conference organized by Shaved Yaks: https://shavedyaks.com/ & Digital Medium: https://events.digital-medium.co.uk
---
#cpp #cplusplus #cpponline #programming #cppprogramming
---
Uninitialized Variables in C++ Software Security and C++ Memory Management - JF Bastien
An in-depth exploration of a subtle aspect of systems programming: uninitialized memory. What are in the bytes before a type exists? This talk dives into the complex world of uninitialized variables, unraveling its mysteries and practical implications. We’ll discuss software security with concrete examples of security vulnerabilities such as information leaks, attacker-controlled values, and use-after-free; performance impact is then explained in-depth; finally, we’ll present mitigations and best practices. The talk delves into memory management on the stack and heap memory, explaining how uninitialized memory issues manifest in each.
Slides: https://github.com/CppOnlineConferenc...
---
JF Bastien
JF is a distinguished engineer at Woven by Toyota. He chairs the evolution of the C++ programming language. JF has worked on a variety of compilers for a variety of programming languages, implementing language features, improving performance / security / safety, targeting novel architectures, and other fun things. See jfbastien.com
---
Streamed & Edited by Digital Medium Ltd - online.digital-medium.co.uk
---
C++Online - The Online C++ Conference organized by Shaved Yaks: https://shavedyaks.com/ & Digital Medium: https://events.digital-medium.co.uk
---
#cpp #cplusplus #cpponline #programming #cppprogramming
هفته قبل
در تاریخ 1403/04/02 منتشر شده
است.
3,918
بـار بازدید شده