Loading…
Attending this event?
August 27 - 28 - Vancouver, BC, Canada
Click for Information & Registration
View analytic
Monday, August 27 • 5:30pm - 5:40pm
Sub-system Update: Kernel Self-Protection Project - Kees Cook, Google

Sign up or log in to save this to your schedule and see who's attending!

This presentation will cover the year-in-review of the Kernel Self-Protection Project since the last Linux Security Summit NA, including an overview of all the security defenses landed in kernels 4.14 through 4.18. Some highlights are vmapped stacks, structure randomization, SLUB freelist obfuscation, set_fs() checking, fast refcount_t protection, Page Table Isolation, usercopy whitelisting, VLA removals, and the stackleak plugin.

We'll also take a quick look at the evolution of kernel CVE lifetimes, find out what defenses are still under development, and note some areas where help is still needed.

Speakers
avatar for Kees Cook

Kees Cook

Kernel Security Engineer, Google
Kees Cook has been working with Free Software since 1994, and has been a Debian Developer since 2007. He is currently employed as a Linux kernel security engineer by Google, working on Android and and Chrome OS. From 2006 through 2011 he worked for Canonical as the Ubuntu Security... Read More →


Monday August 27, 2018 5:30pm - 5:40pm
Room 114/115
Feedback form isn't open yet.