Overview
Explore the features, vulnerabilities, and future of WebAssembly in this 21-minute Black Hat conference talk. Gain insights into the binary format, section structure, and parsing of WebAssembly, while examining potential security concerns such as integer overflow and array buffer offset issues. Delve into the execution of WebAssembly, including imports, memory management, and runtime challenges. Learn about emerging areas of security concern and future developments in this rapidly evolving technology. Presented by Natalie Silvanovich, this comprehensive overview provides valuable information for developers and security professionals interested in understanding the problems and promise of WebAssembly.
Syllabus
Introduction
What is WebAssembly
Applications of WebAssembly
Problems of WebAssembly
What is Web Assembly
Binary Format
Section Structure
Parse
Custom Sections
Integer Overflow
Array Buffer Offset
Running WebAssembly
Imports
Import Types
Memory
Memory Bugs
Out of Bounds
Table
Initialize
Runtime Issues
Future Features
Conclusion
Taught by
Black Hat