YoVDO

Non-Crypto Constant-Time Coding

Offered By: NorthSec via YouTube

Tags

NorthSec Courses C Programming Courses Secure Coding Practices Courses Cache Attacks Courses

Course Description

Overview

Explore cache attacks, SGX technology, and constant-time coding techniques in this 33-minute conference talk by Thomas Pornin at NorthSec. Gain insights into side-channel attacks that have been exploited since 2005 to compromise cryptographic algorithm implementations. Discover how these vulnerabilities extend beyond cryptography, potentially affecting any system handling confidential data in certain contexts. Learn about the SGX technology and its role in creating a environment where all enclave code must be fortified against cache attacks. Examine a toolkit of C functions designed to facilitate the development of generic, non-crypto constant-time code, enhancing overall system security.

Syllabus

Thomas Pornin - Non-Crypto Constant-Time Coding


Taught by

NorthSec

Related Courses

Exploiting and Securing Vulnerabilities in Java Applications
University of California, Davis via Coursera Secure Software Development Fundamentals
Linux Foundation via edX Learn what's new in PHP 7
Udemy Secure Software Lifecycle Management for CSSLPĀ®
Pluralsight CSSLP Cert Prep: 4 Secure Software Implementation
LinkedIn Learning