Building Hardened IoT Implementations With LangSec
Offered By: nullcon via YouTube
Course Description
Overview
Explore the principles of Language-theoretic security (LangSec) and its application in building robust IoT implementations in this conference talk from nullcon Goa 2019. Delve into the importance of separating input recognition from processing to prevent parser bugs and enhance code auditability. Learn about the parser combinator library Hammer and its role in constructing secure applications. Discover techniques for generating test cases from parser combinator inputs to thoroughly evaluate implementation correctness. Examine a practical demonstration of these concepts applied to the AMQP protocol, widely used in industrial IoT systems, and compare its effectiveness against popular fuzzers like AFL and libfuzzer. Gain insights from Ph.D. student Prashant Anantharaman's research on IoT security, applied cryptography, and input-handling methodologies for both documented and undocumented protocol implementations.
Syllabus
Building Hardened IoT Implementations With LangSec | Prashant Anantharaman | nullcon Goa 2019
Taught by
nullcon
Related Courses
Unearthing Malicious and Risky OpenSource Packages Using Packjnullcon via YouTube Pushing Security Left by Mutating Byte Code
nullcon via YouTube The Faces of MacOS Malware - Detecting Anomalies in a Poisoned Apple
nullcon via YouTube Contextomy - Let's Debug Together
nullcon via YouTube Mind The Gap - The Linux Ecosystem Kernel Patch Gap
nullcon via YouTube