High-Assurance Code Reviews - How Consulting Works When the Risks Are High

Explore the evolving landscape of software security consulting in this keynote address focusing on high-assurance code reviews. Learn how traditional manual code review methods are being adapted for critical software systems where failure is not an option. Discover the techniques and processes developed by Trail of Bits for conducting rapid, time-boxed reviews of high-stakes software such as cryptographic libraries, cloud-native applications, embedded systems, and smart contracts. Gain insights into predictable outcome creation for these challenging reviews and understand the lessons learned from hundreds of high-risk software assessments. Delivered by Dan Guido, CEO of Trail of Bits and experienced cybersecurity professional, this talk offers valuable perspectives on addressing modern software security challenges in high-consequence environments.