|
Upcoming Events
Past Events (slides
available)
Upcoming
Events
March 2007
Class:
Secure Coding in C++ (PART 1)
Friday, March 23
8:30 AM - 10:00 AM
Offered at the
SD West 2007
Conference & Expo
March 19-23, 2007
Santa Clara, CA
Speakers
Robert Seacord
Senior Vulnerability Analyst
CERT/Coordination Center
Class:
Secure Coding in C++ (PART 2)
Friday, March 23
10:30 AM - 12:00 PM
Offered at the
SD West 2007 Conference & Expo
March 19-23, 2007
Santa Clara, CA
Speakers
Robert Seacord
Senior Vulnerability Analyst
CERT/Coordination Center
Past
Events
(slides available)
November
2005
Presentation
Best Practices for Secure Coding
November 7, 2005
Offered at
Workshop
on
Code Based Software Security Assessments (CoBaSSA 2005)
Pittsburgh,
Pennsylvania, USA
Speakers
Robert C. Seacord
PDF
File [0.18MB]
Tutorial
Secure
Coding in C and C++: A Look at Common Vulnerabilities
Wednesday, November 9, 2005
Offered
at
12th
ACM
Conference on Computer and Communications Security (CCS 2005}
Hilton Alexandria Mark Center, Alexandria, VA, U.S.A.
Speakers
Robert C. Seacord and Jason Rafail
CERT/Coordination Center
PDF
File [0.22MB]
February 2006
Tutorial:
Secure Coding in C and
C++
Monday, February 6
9:00 AM - 17:00 PM
Offered at the
Software
Security Summit
February 6-8, 2006
San Diego, Calif.
Speakers
Robert Seacord
Senior Vulnerability Analyst
CERT/Coordination Center
Course:
Managed Strings
Tuesday, February 7
9:00 AM - 17:00 PM
Offered at the
Software
Security Summit
February 6-8, 2006
San Diego, Calif.
Speakers
Robert Seacord
Senior Vulnerability Analyst
CERT/Coordination Center
March
2006
Tutorial:
Secure Coding in C and
C++
Monday, March 13th, 2006
IEEE
International
Symposium on Secure Software Engineering
McLean, VA, USA
Speakers
Robert Seacord
Senior Vulnerability Analyst
CERT/Coordination Center
June 2006
Tutorial:
Secure Coding in C and
C++
Monday, June 5
9:00 am-5:00 pm
Offered at the
Software Security
Summit
June 5-7, 2006
Baltimore, MD
Speaker
Robert Seacord
Senior Vulnerability Analyst
CERT/Coordination Center
Course:
Conducting
Structured C/C++ Reviews
Tuesday, June 6
8:45 am-10:15 am
Offered at
Software Security
Summit
June 5-7, 2006
Baltimore, MD
Tutorial:
Secure Coding in
C and
C++
June 26th (Monday)
9:10AM – 10:30AM
Offered at the
18th Annual FIRST
Conference
June 25-30, 2006
Baltimore, Maryland USA
Speaker
Robert Seacord
Senior Vulnerability Analyst
CERT/Coordination Center
July 2006
No events scheduled.
August 2006
No events scheduled.
September
2006
Class:
Secure Coding in C++ : Strings, Part 1
Thursday, September 14, 2006--1:45:00 PM-3:15:00 PM
Level: Intermediate
Abstract
The Secure Coding in C++: Strings class provides practical advice on how
to develop secure C++ programs. The incorrect use of strings in C++ is
a common source of exploitable vulnerabilities. This course looks at
how common string manipulation errors such as unbounded string copies
can be exploited by an attacker to execute arbitrary code on a
vulnerable system. This course will also examine the strengths and
weaknesses of common mitigation strategies.
Offered at
SD Best Practices 2006
September 11-14, 2006
Hynes Convention Center, Boston, MA
Speaker
Robert Seacord
Senior Vulnerability Analyst
CERT/Coordination Center
Class--Secure Coding in C++: Integers, Part 2
Thursday,
September 14, 2006--3:45:00 PM-5:15:00 PM
Level: Intermediate
Abstract
The Secure Coding in C++: Integers class provides practical advice on
developing secure C++ programs. Integer behavior in C++ is considerably
more complex than most developers realize, and the incorrect use of
integers is a large and growing source of software vulnerabilities.
This class examines common sources of integer errors such as overflow,
truncation, and sign errors that lead to exploitable vulnerabilities.
This course will also describe the strengths and weakness of existing
mitigation strategies.
Offered at
SD Best Practices 2006
September 11-14, 2006
Hynes Convention Center, Boston, MA
Speaker
Robert Seacord
Senior Vulnerability Analyst
CERT/Coordination Center
|
