Hi
user
Admin Login:
Username:
Password:
Name:
Make more Secure Code! - Overview of Security Development Lifecycle and Static Code Analysis
--client
lca
--show
lca2017
--room plenary 12141 --force
Next: 12 The Internet of Scary Things - tips to deploy and manage IoT safely
show more...
Marks
Author(s):
Jason Cohen
Location
Plenary Hall
Date
jan Mon 16
Days Raw Files
Start
21:30
First Raw Start
21:17
Duration
0:30:0
Offset
0:12:47
End
22:00
Last Raw End
22:17
Chapters
00:00
0:16:19
Total cuts_time
31 min.
http://linux.conf.au/schedule/presentation/129/
raw-playlist
raw-mp4-playlist
encoded-files-playlist
host
archive
tweet
mp4
svg
png
assets
release.pdf
Make_more_Secure_Code_Overview_of_Security_Development_Lifecycle_and_Static_Code_Analysis.json
logs
Admin:
episode
episode list
cut list
raw files day
marks day
marks day
image_files
State:
---------
borked
edit
encode
push to queue
post
richard
review 1
email
review 2
make public
tweet
to-miror
conf
done
Locked:
clear this to unlock
Locked by:
user/process that locked.
Start:
initially scheduled time from master, adjusted to match reality
Duration:
length in hh:mm:ss
Name:
Video Title (shows in video search results)
Emails:
email(s) of the presenter(s)
Released:
has someone authorised pubication
Unknown
Yes
No
Normalise:
Channelcopy:
m=mono, 01=copy left to right, 10=right to left, 00=ignore.
Thumbnail:
filename.png
Description:
markdown
It would seem that, despite the exponential growth in security products, security services, security companies, security certifications, and general interest in the security topic; we are still bombarded with a constant parade of security vulnerability disclosures on a seemingly daily basis. It turns out that we in the Open Source community can no longer shake a disapproving finger at the closed-source giants without also pointing to ourselves and asking what we can do better. In this era of increasingly modular code development and reuse of common libraries, we need to be considering the impact of potential flaws in code we assume to be secure due simply to its widespread use and Open Source nature. So, what do we do? Although it’s not a magical solution or panacea to the problem; implementing Security Development Lifecycle best practices and principles for each and every software development endeavor we undertake (whether it is for your job or for an Open Source Project) can go a long way to reducing the potential for common security flaws. In addition, there is no reason that Static Code Analysis should not be part of every development effort. We are still seeing obvious, easy to fix flaws in modern source code. Input sanitization issues, Cross-Site-Scripting, buffer overflows, and many other known issues still represent the bulk of security issues present. Static Code Analysis can help catch many of these unnoticed issues before code makes it out of the developer’s hands. In addition, we can perform our own analysis on libraries that we wish to leverage to help determine risk ourselves. In this talk, we will explore some common best practice Security Development Lifecycle theory and how we can integrate this into modern code development schemes. We will also look at how to integrate Static Code analysis tools into the development process, to include a demo.
Comment:
production notes
2017-01-17/14_17_13.ts
Apply:
21:17:13 - 21:25:34 ( 00:08:21 )
S:
21:17:13 -
E:
21:47:13
D:
00:30:00
(
End:
501.0)
show more...
vlc ~/Videos/veyepar/lca/lca2017/dv/plenary/2017-01-17/14_17_13.ts :start-time=00.0 --audio-desync=0
Raw File
Cut List
21:17:13
seconds: 0.0
Wall: 21:17:13
Duration
00:30:00
21:47:13
seconds: 501.0
Wall: 21:25:34
Comments:
mp4
mp4.m3u
dv.m3u
Split:
Sequence:
:
delete
2017-01-17/14_17_13.ts
Apply:
21:25:34 - 21:30:54 ( 00:05:20 )
S:
21:17:13 -
E:
21:47:13
D:
00:30:00
(
Start:
501.0) (
End:
821.0)
show more...
vlc ~/Videos/veyepar/lca/lca2017/dv/plenary/2017-01-17/14_17_13.ts :start-time=0501.0 --audio-desync=0
Raw File
Cut List
21:17:13
seconds: 501.0
Wall: 21:25:34
Duration
00:30:00
21:47:13
seconds: 821.0
Wall: 21:30:54
Comments:
mp4
mp4.m3u
dv.m3u
Split:
Sequence:
:
delete
2017-01-17/14_17_13.ts
Apply:
21:30:54 - 21:47:13 ( 00:16:19 )
S:
21:17:13 -
E:
21:47:13
D:
00:30:00
(
Start:
821.0)
show more...
vlc ~/Videos/veyepar/lca/lca2017/dv/plenary/2017-01-17/14_17_13.ts :start-time=0821.0 --audio-desync=0
Raw File
Cut List
21:17:13
seconds: 821.0
Wall: 21:30:54
Duration
00:30:00
21:47:13
seconds: 0.0
Wall: 21:17:13
Comments:
mp4
mp4.m3u
dv.m3u
Split:
Sequence:
:
delete
2017-01-17/14_47_13.ts
Apply:
21:47:13 - 22:01:55 ( 00:14:42 )
S:
21:47:13 -
E:
22:17:13
D:
00:30:00
(
End:
882.0)
show more...
vlc ~/Videos/veyepar/lca/lca2017/dv/plenary/2017-01-17/14_47_13.ts :start-time=00.0 --audio-desync=0
Raw File
Cut List
21:47:13
seconds: 0.0
Wall: 21:47:13
Duration
00:30:00
22:17:13
seconds: 882.0
Wall: 22:01:55
Comments:
mp4
mp4.m3u
dv.m3u
Split:
Sequence:
:
delete
2017-01-17/14_47_13.ts
Apply:
22:02:45 - 22:17:13 ( 00:14:28 )
S:
21:47:13 -
E:
22:17:13
D:
00:30:00
(
Start:
932.0)
show more...
vlc ~/Videos/veyepar/lca/lca2017/dv/plenary/2017-01-17/14_47_13.ts :start-time=0932.0 --audio-desync=0
Raw File
Cut List
21:47:13
seconds: 932.0
Wall: 22:02:45
Duration
00:30:00
22:17:13
seconds: 0.0
Wall: 21:47:13
Comments:
mp4
mp4.m3u
dv.m3u
Split:
Sequence:
:
delete
Rf filename:
root is .../show/dv/location/, example: 2013-03-13/13:13:30.dv
Sequence:
get this:
check and save to add this
2017-01-17/14_17_13.ts
2017-01-17/14_47_13.ts
Veyepar
Video Eyeball Processor and Review