YoVDO

Kernel Runtime Security Instrumentation

Offered By: Linux Foundation via YouTube

Tags

Conference Talks Courses Cybersecurity Courses System Administration Courses Linux Kernel Security Courses eBPF Courses

Course Description

Overview

Explore the concept of Kernel Runtime Security Instrumentation (KRSI) in this informative conference talk by KP Singh from Google. Learn about the limitations of existing Linux Security Modules and how KRSI aims to provide an extensible solution using eBPF programs. Discover the benefits of attaching userspace programs to security hooks without kernel modifications. Gain insights into representative use cases, comparisons with alternatives like Landlock and kprobes+eBPF, and understand the proposed design and interfaces. Watch a live demonstration and explore the potential impact of KRSI on security and auditing software development. Delve into the introduction, motivation, eBPF, detections, future plans, and conclusion of this groundbreaking approach to kernel security.

Syllabus

Introduction
Motivation
EBPF
Detections
Future plans
Conclusion


Taught by

Linux Foundation

Tags

Related Courses

Analyzing Postgres Performance Problems Using Perf and eBPF
Microsoft via YouTube Citus Con - An Event for Postgres - Americas Livestream
Microsoft via YouTube EBPF - The Next Power Tool of SREs
USENIX via YouTube Kernel Tracing With EBPF
media.ccc.de via YouTube Building Observability for 99% Developers
Docker via YouTube