LinuxSecuritySummit 2019 Aug. 19, 2019 to Aug. 21, 2019, San Diego, US

Event Page


Tell us about missing data
Title Speakers Summary Topic Types
Enarx - Attested, Secured Execution with AMD’s SEV Nathaniel Kaplan AMD SEV (Secure Encrypted Virtualization) is a new CPU security technology available in AMD's EPYC ...
TrenchBoot - How to Nicely Boot System with Intel TXT and AMD SVM Daniel Smith TrenchBoot is a cross-community OSS integration project for hardware-rooted, late launch integrity of open and ...
Making Containers Safer Stéphane Brauner Containers are used for a multitude of workloads everywhere today. But not all containers are ...
Kernel Runtime Security Instrumentation Kp Singh Kernel Runtime Security Instrumentation (KRSI) [1] aims to provide an extensible Linux Security Module (LSM) ...
Breaking and Protecting Linux Kernel Stack Elena Reshetova Linux kernel stack has always been a popular attack target due to its simple structure ...
Securing TPM Secrets with TXT and Kernel Signatures - Paul Moore, Cisco* Paul Moore This presentation will discuss a work in progress to secure data in the TPM2’s NVRAM ...
BoF Session Roberto Sassu N/A
Keynote: Retrospective: 26 Years of Flexible MAC Stephen Smalley For the past 26 years, the speaker has been engaged in the design, implementation, technology ...
NFS Support for the Linux Integrity Measurement Architecture Chuck Lever Until recently, integrity measurement support was available only on local file systems. This talk describes ...
Application Whitelisting Steven Grubb Application whitelisting is an effective way of preventing unknown software from executing on a machine. ...
Rich Authorization in a Resource Constrained Device Kenneth A. Goldman TPM 2.0 is an example of a low cost, resource-constrained device that provides a rich ...
Writing Linux Kernel Modules in Safe Rust Geoffrey Gaynor With 65% of recent Linux kernel vulnerabilities being the result of memory unsafety (buffer overflows, ...
Integrity Measurements and the Cruel World Janne Karhunen Offline attacks have been a hot topic for a while now, yet the deployments of ...
Tutorial: Complete Platform Attestation: Remotely Verifying the Authenticity and Integrity of your Platform’s Hardware, Firmware, and Software Monty Dave This tutorial will discuss and demonstrate remote verification of a platform’s hardware, firmware and runtime ...
Tutorial: How to Write a Linux Security Module Casey Schaufler You have a great idea for security in the Linux kernel, but you don't know ...
Kernel Self-Protection Project Kees Cook This presentation will cover the year-in-review of the Kernel Self-Protection Project since the last Linux ...
Making Remote Attestation Useful on Linux Brandon Garrett TPM remote attestation allows a machine to provide proof about what happened during its boot ...
It's Coming From Inside the House: Kernelspace Fault Injection with KRF William Woodruff Fault injection (FI) has become an increasingly popular software testing method, with major players like ...
Using and Implementing Keyring Restrictions for Userspace Mat Martineau The kernel keyring facility has grown in capability beyond its initial, limited support for x.509 ...
syzkaller Update and Open Problems Dmitry Vyukov syzkaller is state-of-the-art kernel fuzzer which has found several thousands of bugs in Linux kernel. ...
Binary Policy with IMA and AppArmor Eric Chiang Google operates one of the largest fleet of developer machines, supporting a wide range of ...
Subsystem Update: State of SELinux, 2019 Paul Moore This presentation will discuss the current state of SELinux, including a review of the past ...
Subsystem Update: AppArmor Update 2019 John Johansen This talk provides an update of the current state of the AppArmor project. It will ...
Subsystem Update: tpm2-Software Update and Highlights Philip Tricca Since our last update at LSS 2018 the tpm2-software community has been hard at work. ...
Subsystem Update: Seccomp, Yama, and LoadPin Kees Cook This will present an update on development over the last year (and quick demos of ...
Subsystem Update: Linux Integrity Status Update Mimi Zohar The Integrity subsystem status update will provide an overview of the new features and other ...
Subsystem Update: LSM Stacking - What You Can Do Now and What's Next Casey Schaufler Before the 5.1 Linux kernel it was only possible to combine Linux security modules (LSM) ...
Subsystem Update: The 2019 Smack Update Casey Schaufler This is the annual Smack update.