Explore a groundbreaking approach to application security in this 43-minute conference talk from LASCON 2016. Delve into the concept of Trusted Execution, a deterministic method for preventing zero-day threats. Discover how this innovative technique provides granular visibility and context at the memory level, promising definitive results and elimination of false positives. Examine dissections of common remote code execution attacks against application infrastructure binaries. Learn how Trusted Execution makes immediate detection and enforcement decisions to thwart sophisticated attacks. Investigate the potential impact on server-side applications at interpreted code levels for faster innovation and code release. Understand how this approach offers a new production-level option for continuous integration through instantaneous adaptive learning, promoting both speed and accuracy in application security.
Overview
Syllabus
2016 - Trusted Execution: A Deterministic Approach to AppSec for 0-Day Threat Prevention-Satya Gupta
Taught by
LASCON