SECURE CODING GUIDE

X What is Secure Coding Guide? Secure Coding Guide

X Hacker vs Attacker Secure Coding Guide

X Types of Vulnerabilities Buffer overflows / underflows Unvalidated input Social Engineering etc. Secure Coding Guide

X Buffer overflows / underflows Secure Coding Guide #include #include void doit(void) { char buf[128]; gets(buf); printf("%s\n", buf); } int main(void) { printf("So... The End...\n"); doit(); printf("or... maybe not?\n"); return 0; }

X Buffer overflows / underflows Secure Coding Guide #include #include void doit(void) { char buf[128]; gets(buf); printf("%s\n", buf); } int main(void) { printf("So... The End...\n"); doit(); printf("or... maybe not?\n"); return 0; }

X Buffer overflows / underflows Secure Coding Guide #include #include void doit(void) { char buf[128]; gets(buf); printf("%s\n", buf); } int main(void) { printf("So... The End...\n"); doit(); printf("or... maybe not?\n"); return 0; }

X Buffer overflows / underflows Secure Coding Guide #include #include void doit(void) { char buf[128]; gets(buf); printf("%s\n", buf); } int main(void) { printf("So... The End...\n"); doit(); printf("or... maybe not?\n"); return 0; }

X Buffer overflows / underflows Secure Coding Guide #include #include void doit(void) { char buf[128]; gets(buf); printf("%s\n", buf); } int main(void) { printf("So... The End...\n"); doit(); printf("or... maybe not?\n"); return 0; }

X Buffer overflows / underflows Secure Coding Guide #include #include void doit(void) { char buf[128]; gets(buf); printf("%s\n", buf); } int main(void) { printf("So... The End...\n"); doit(); printf("or... maybe not?\n"); return 0; }

X Buffer overflows / underflows Secure Coding Guide #include #include void doit(void) { char buf[128]; gets(buf); printf("%s\n", buf); } int main(void) { printf("So... The End...\n"); doit(); printf("or... maybe not?\n"); return 0; }

X Buffer overflows / underflows Secure Coding Guide #include #include void doit(void) { char buf[128]; gets(buf); printf("%s\n", buf); } int main(void) { printf("So... The End...\n"); doit(); printf("or... maybe not?\n"); return 0; } … buf[0] buf[127] . . . … return address … Buffer overflow

X Other types of overflows Heap overflows Integer overflow Pointer arithmetic Secure Coding Guide

X How to avoid these overflow? Use functions that check the bounds (i.e. fgets instead of gets) Secure Coding Guide

X How to avoid these overflow? Use functions that check the bounds (i.e. fgets instead of gets) Some things are done by OS Secure Coding Guide

X How to avoid these overflow? Use functions that check the bounds (i.e. fgets instead of gets) Some things are done by OS DON’T USE C Secure Coding Guide

X Unvalidated input Format string vulnerabilities URL commands Code insertion Social engineering Secure Coding Guide

X Format string vulnerability Secure Coding Guide Let’s Code!

X Social engineering attacks Tricking people into normal security procedures. An example: Phishing Secure Coding Guide

X Social engineering attacks myapp://cmd/delete?file=cached data that is slowing down your system.,key_from_my_bitcon_wallet.txt Secure Coding Guide

X Social engineering attacks myapp://cmd/delete?file=cached data that is slowing down your system.,key_from_my_bitcon_wallet.txt Secure Coding Guide

X Other types of vulnerabilities Insecure file operations Secure Coding Guide

X Other types of vulnerabilities Insecure file operations Race conditions Secure Coding Guide

X Other types of vulnerabilities Insecure file operations Race conditions Secure Coding Guide

X And finally… Secure Coding Guide