YoVDO

Non-Crypto Constant-Time Coding

Offered By: NorthSec via YouTube

Tags

NorthSec Courses C Programming Courses Secure Coding Practices Courses Cache Attacks Courses

Course Description

Overview

Explore cache attacks, SGX technology, and constant-time coding techniques in this 33-minute conference talk by Thomas Pornin at NorthSec. Gain insights into side-channel attacks that have been exploited since 2005 to compromise cryptographic algorithm implementations. Discover how these vulnerabilities extend beyond cryptography, potentially affecting any system handling confidential data in certain contexts. Learn about the SGX technology and its role in creating a environment where all enclave code must be fortified against cache attacks. Examine a toolkit of C functions designed to facilitate the development of generic, non-crypto constant-time code, enhancing overall system security.

Syllabus

Thomas Pornin - Non-Crypto Constant-Time Coding


Taught by

NorthSec

Related Courses

I Am Become Loadbalancer, Owner of Your Network
NorthSec via YouTube The Risks of RDP and How to Mitigate Them
NorthSec via YouTube Authentication Challenges in SaaS Integration and Cloud Transformation
NorthSec via YouTube Building CANtact Pro - An Open Source CAN Bus Tool
NorthSec via YouTube Unmasking the Chameleons of the Criminal Underground
NorthSec via YouTube