Learn about a groundbreaking sandboxing approach for open source libraries in this 33-minute conference talk from OpenSSF. Discover how security principles from Google and Firefox's sandboxing techniques can be applied to protect open source packages from exploitation. Explore the implementation of eBPF and KRSI technologies to create sandbox environments that mirror the security benefits found in browser-based and mobile platforms. Follow along with practical code examples demonstrating how to identify and block potential exploits, while understanding how this innovative approach addresses the challenges of keeping pace with rapidly evolving zero-day threats and the growing number of vulnerabilities in open source software packages.
Novel Sandboxing Techniques for Open Source Libraries Using eBPF and KRSI
Overview
Syllabus
Open & Secure: Novel Sandboxing Technique for Any Open Source Library - Gal Elbaz, Oligo Security
Taught by
OpenSSF
Related Courses
-
Security Research with Open Source Software - Volume Omega
-
Mobilizing the Open Source Industry for Better Security by Default
-
Preparing for Zero-Day: Vulnerability Disclosure in Open Source Software
-
Ending Open Source Security Fatigue - Lessons from Major Vulnerabilities
-
Open Source Security: Best Practices for Early Detection and Risk Mitigation
-
A Different Kind of S3 - First Line Security of the Supply Chain
