Security Through Static Analysis - Don't Let It Crash

Explore the importance of security in BEAM-based systems through this 18-minute conference talk from Code BEAM Europe 2023. Delve into the principle of 'let it crash' and its implications for exception handling and data validation in Erlang and Elixir. Learn about the Erlang Ecosystem Foundation's secure coding principles and their relevance to modern projects. Discover how static analysis techniques, particularly data-flow analysis, can be employed to detect, mitigate, and eliminate critical security vulnerabilities in both new and legacy Erlang codebases. Examine real-world use cases of vulnerabilities found in open-source projects and gain insights into semi-automatic methods for improving code security. Gain valuable knowledge on creating more secure and robust BEAM-based systems through the application of static analysis tools and techniques.