Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

Linux Foundation

Zero-Configuration Runtime Software Component Detection

Linux Foundation via YouTube

Overview

Explore runtime software component detection techniques in this insightful conference talk. Learn about the challenges of identifying vulnerable software components in operating environments, particularly those embedded in complex dependency chains. Discover how to leverage eBPF technology to detect specific software versions, such as Log4j and Spring Core, without initial application configurations. Gain knowledge on extracting crucial information from the Linux kernel during Java application execution and processing collected data to determine Java Archive details. Examine the implementation of a runtime Java component detector and its application in verifying vulnerable component usage within public container images. Understand the importance of SBOM (Software Bill of Materials) in light of recent security incidents and explore innovative approaches to enhance software security in runtime environments.

Syllabus

Zero-Configuration Runtime Software Component Detection - Inhyeok Jang

Taught by

Linux Foundation

Reviews

Start your review of Zero-Configuration Runtime Software Component Detection

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.