• Home

  • Documents

  • Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4....
72
Threat modelling for developers Arne Padmos

Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

  • Upload
    others

  • View
    3

  • Download
    0

Embed Size (px)

Citation preview

Page 1: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Threat modellingfor developers

Arne Padmos

Page 2: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

xkcd

Page 3: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

SafetyvsSecurity

Page 4: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2
Page 5: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

William WarbyWarner Bros

Page 6: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2
Page 7: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Are we doomed?

Page 8: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2
Page 9: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

“ Building security in ”

“ Security by design ”

“ Shifting security left ”

Page 10: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Microsoft

Page 11: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Microsoft

Page 12: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

“ If we ... could do only one thing “ to improve software security … “ we would do threat modelling “ every day of the week. ”

— Howard & Lipner

Page 13: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

“ If we ... could do only one thing “ to improve software security … “ we would do threat modelling “ every day of the week. ”

— Howard & Lipner

Page 14: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Requirements engineering&Architectural analysis

Page 15: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

What’s your threat model?( security assumptions )

Page 16: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2
Page 17: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

“ More precisely, we will assume“ the following about a saboteur: ”

– obtain any message– initiate any conversation– be a receiver to any user

Page 18: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Utagawa Kuniyoshi

Page 19: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

NSA

Page 20: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Eleanor Saitta

Page 21: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

What couldpossiblygo wrong?

& how

Page 22: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

What couldpossiblygo wrong?

& how

Page 23: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Types of threat modelling

– Attacker-centric– Asset-centric– System-centric

Page 24: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

William Warby

Page 25: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Paul Pols

Page 26: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Cyril Davenport

Page 27: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Eleanor Saitta et al.

Page 28: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Stewart Brand

Page 29: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Antti Vähä-Sipilä

Page 30: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Popular approaches( system-centric )

– STRIDE– Trike– PASTA

Page 31: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Relevant questions

1. What are we working on?2. What can go wrong?3. What are we going to do?4. Did we do a good job?

Adam Shostack

Page 32: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Lightweight methodology

1. Draw data flows2. Elicit threats3. Ranking + controls4. Check your work

Page 33: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Lightweight methodology

1. Draw data flows2. Elicit threats3. Ranking + controls4. Check your work

Page 34: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

CMU

Page 35: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Adam Shostack

Page 36: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Mark Dowd et al.

Page 37: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Trail of Bits

Page 38: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Lightweight methodology

1. Draw data flows2. Elicit threats3. Ranking + controls4. Check your work

Page 39: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

ConfidentialityIntegrityAvailability

AuthenticationAuthorisationAccountability

Page 40: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Information disclosureTamperingDenial of service

SpoofingElevation of privilegeRepudiation

Page 41: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

“STRIDE”

Page 42: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

SAFEcode

Page 43: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

SWIFT

Page 44: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Adam Shostack

Page 45: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Lightweight methodology

1. Draw data flows2. Elicit threats3. Ranking + controls4. Check your work

Page 46: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Dick Bruna

Page 47: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Parker Brothers

Page 48: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Risk ≈ likelihood × impact

Page 49: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

ThoughtWorks

Page 50: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Howard & Lipner

Page 51: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Lightweight methodology

1. Draw data flows2. Elicit threats3. Ranking + controls4. Check your work

Page 52: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

“ All models are wrong,“ some models are useful. ”

— George Box

Page 53: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Koyaanisqatsi

Page 54: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Stephen Checkoway et al.

Page 55: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2
Page 56: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Howard & Lipner

Page 57: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

xkcd

Page 58: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Lightweight methodology

1. Draw data flows2. Elicit threats3. Ranking + controls4. Check your work

Page 59: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2
Page 60: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Dick Bruna

Page 61: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

ThoughtWorks

Page 62: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

ThoughtWorks

Page 63: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

ThoughtWorks

Page 64: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

ThoughtWorks

Page 65: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2
Page 66: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2
Page 67: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

@wilg

Page 68: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Rijksoverheid

Page 69: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

What couldpossiblygo wrong?

& how

Page 70: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

Arne [email protected]

Page 71: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2
Page 72: Threat modelling for developers - fosdem.org · What can go wrong? 3. What are we going to do? 4. Did we do a good job? Adam Shostack. Lightweight methodology 1. Draw data flows 2

github.com/arnepadmos/resources

my “toy collection”


Adam Shostack Microsoft - LayerOne...Threat Modeling (Swiderski and Snyder, Microsoft Press) "Guerilla Threat Modeling" (Torr) Patterns and Practices (J.D. Meier) Threat modeling for

Adam Shostack Microsoft - LayerOne...Threat Modeling (Swiderski and Snyder, Microsoft Press) "Guerilla Threat Modeling" (Torr) Patterns and Practices (J.D. Meier) Threat modeling for

Documents
Paying for Privacy: Consumers & Infrastructures Adam Shostack adam@informedsecurity.com Presented at 2nd Workshop on Security and Economics Maryland, May

Paying for Privacy: Consumers & Infrastructures Adam Shostack [email protected] Presented at 2nd Workshop on Security and Economics Maryland, May

Documents
The free toolchain for the STM8 - fosdem.org free toolchain for the STM8 Getting into first place when non-free tools had years of head start Philipp Klaus Krause February 3, 2018

The free toolchain for the STM8 - fosdem.org free toolchain for the STM8 Getting into first place when non-free tools had years of head start Philipp Klaus Krause February 3, 2018

Documents
ENVIRONMENTAL JUSTICE AND GENOMICS: Acting …thetarrytownmeetings.org/sites/default/files/Shostack...ENVIRONMENTAL JUSTICE AND GENOMICS 543 ation of internal nature (i.e. biological

ENVIRONMENTAL JUSTICE AND GENOMICS: Acting …thetarrytownmeetings.org/sites/default/files/Shostack...ENVIRONMENTAL JUSTICE AND GENOMICS 543 ation of internal nature (i.e. biological

Documents
with GDPR Openstack compliance - fosdem.org · Vulnerability Managed Openstack Projects barbican (Barbican (Key Manager service)) castellan-ui (Barbican (Key Manager service)) python

with GDPR Openstack compliance - fosdem.org · Vulnerability Managed Openstack Projects barbican (Barbican (Key Manager service)) castellan-ui (Barbican (Key Manager service)) python

Documents
Feedback Feedback -- What Works, What What … Feedback -- What Works, What What Works, What ... Johari Window Model feedback ... Microsoft PowerPoint

Feedback Feedback -- What Works, What What … Feedback -- What Works, What What Works, What ... Johari Window Model feedback ... Microsoft PowerPoint

Documents
Samba Witness Protection Programming - fosdem.org · Clustering in Windows and Samba Windows – File Server role (active / passive) – Scaleout File Server role (active / active)

Samba Witness Protection Programming - fosdem.org · Clustering in Windows and Samba Windows – File Server role (active / passive) – Scaleout File Server role (active / active)

Documents
Temporal Graph Analytics with GRADOOP - fosdem.org · Temporal Graph Analytics with GRADOOP Christopher Rost and Kevin Gomez Leipzig University. About the speakers and the team Kevin,

Temporal Graph Analytics with GRADOOP - fosdem.org · Temporal Graph Analytics with GRADOOP Christopher Rost and Kevin Gomez Leipzig University. About the speakers and the team Kevin,

Documents
Debugging realtime application with Ftrace - fosdem.org · Try write + read (with strace) # echo toto > /dev/mydriver3 # strace cat /dev/mydriver3 # cat trace. Debugging RT with Ftrace

Debugging realtime application with Ftrace - fosdem.org · Try write + read (with strace) # echo toto > /dev/mydriver3 # strace cat /dev/mydriver3 # cat trace. Debugging RT with Ftrace

Documents
Designing and Building - UMD...and Building Secure Software With material from Dave Levin, Mike Hicks, Adam Shostack Making secure software • Flawed approach: Design and build software,

Designing and Building - UMD...and Building Secure Software With material from Dave Levin, Mike Hicks, Adam Shostack Making secure software • Flawed approach: Design and build software,

Documents
LREProxy - fosdem.org

LREProxy - fosdem.org

Documents
Improving Service Quality through Customer Journey Analysis · for mapping the processes tha t constitute a service, including the customer’s process (Shostack, 1987; Bitner et

Improving Service Quality through Customer Journey Analysis · for mapping the processes tha t constitute a service, including the customer’s process (Shostack, 1987; Bitner et

Documents
Living on the Edge - fosdem.org on the Edge Greatly needed stub resolver capabilities for applications and systems with the library Willem Toorop 4 February 2018

Living on the Edge - fosdem.org on the Edge Greatly needed stub resolver capabilities for applications and systems with the library Willem Toorop 4 February 2018

Documents
What? What? What?

What? What? What?

Documents
Network Automation Journey - fosdem.org · Network Automation Journey A systems engineer NetOps perspective Walid Shaari @walidshaari FOSDEM 2018 4th February 2018 ... @walidshaari

Network Automation Journey - fosdem.org · Network Automation Journey A systems engineer NetOps perspective Walid Shaari @walidshaari FOSDEM 2018 4th February 2018 ... @walidshaari

Documents
Breaking Free From Product Marketing 73belzludovic.free.fr/nolwenn/Shostack - Breaking free from product... · Breaking Free From Product Marketing / 75 considerations. The charter

Breaking Free From Product Marketing 73belzludovic.free.fr/nolwenn/Shostack - Breaking free from product... · Breaking Free From Product Marketing / 75 considerations. The charter

Documents
U-Boot bootloader port done right { 2018 edition - fosdem.org · U-Boot bootloader port done right ... { Header les for all global things I include/con gs/ ... I Data structure describing

U-Boot bootloader port done right { 2018 edition - fosdem.org · U-Boot bootloader port done right ... { Header les for all global things I include/con gs/ ... I Data structure describing

Documents
Engineers are People Too Adam Shostack Microsoft

Engineers are People Too Adam Shostack Microsoft

Documents
Thoth - fosdem.org...Thoth Station Why Thoth? Create knowledge base What packages in which versions should I use? Application builds correctly Application runs correctly Application

Thoth - fosdem.org...Thoth Station Why Thoth? Create knowledge base What packages in which versions should I use? Application builds correctly Application runs correctly Application

Documents
TEMA BU - fosdem.org...GNU/Linux Disaster Recovery Fast rollback to a pre-upgrade backup after any wrong OS upgrade causing service downtime or malfunction. Recover software or hardware

TEMA BU - fosdem.org...GNU/Linux Disaster Recovery Fast rollback to a pre-upgrade backup after any wrong OS upgrade causing service downtime or malfunction. Recover software or hardware

Documents
Identity and Economics: Terrorism and Immigration Adam Shostack Privacy Curmudgeon adam@homeport.org

Identity and Economics: Terrorism and Immigration Adam Shostack Privacy Curmudgeon [email protected]

Documents
The Crisis In Information Security Adam Shostack

The Crisis In Information Security Adam Shostack

Documents
Designing services that deliverDesigning services that deliver G. Lynn Shostack Even though they are intangible, services can be subjected to the same rigorous analysis as other management

Designing services that deliverDesigning services that deliver G. Lynn Shostack Even though they are intangible, services can be subjected to the same rigorous analysis as other management

Documents
FFmpeg The Media Swiss Army Knife - fosdem.org · Abstract FFmpeg is a FOSS, crossplatform, solution to record, convert and stream audio and video. This session will focus on using

FFmpeg The Media Swiss Army Knife - fosdem.org · Abstract FFmpeg is a FOSS, crossplatform, solution to record, convert and stream audio and video. This session will focus on using

Documents
Fast packet processing in linux with af xdp - fosdem.org · – Item in backlog to make this a thread on third core ... l2fwd 0.71 Mpps 1.7 Mpps - 10.3 Mpps XDP_SKB mode up to 5x

Fast packet processing in linux with af xdp - fosdem.org · – Item in backlog to make this a thread on third core ... l2fwd 0.71 Mpps 1.7 Mpps - 10.3 Mpps XDP_SKB mode up to 5x

Documents
Threat Modeling: Lessons from Star Wars Adam Shostack · 2017-06-26 · Threat Modeling: Lessons from Star Wars Adam Shostack adam@shostack.org. Agenda –What is threat modeling?

Threat Modeling: Lessons from Star Wars Adam Shostack · 2017-06-26 · Threat Modeling: Lessons from Star Wars Adam Shostack [email protected]. Agenda –What is threat modeling?

Documents
Robot Operative System - fosdem.org€¦ · 1 Jose Luis Rivero Open Robotics ROS2: The evolution of Robot Operative System

Robot Operative System - fosdem.org€¦ · 1 Jose Luis Rivero Open Robotics ROS2: The evolution of Robot Operative System

Documents
how to make package managers cry - fosdem.org · How to make package managers cry 1 ... most of what I'm showing are not my ideas ... • tons of things you can do to make your software

how to make package managers cry - fosdem.org · How to make package managers cry 1 ... most of what I'm showing are not my ideas ... • tons of things you can do to make your software

Documents
Drive your NAND within Linux - fosdem.org · I NAND operations evolve over the time → need to add support for vendor specific ... I More to come: FSMC, Sunxi, VF610, Arasan, MXC,

Drive your NAND within Linux - fosdem.org · I NAND operations evolve over the time → need to add support for vendor specific ... I More to come: FSMC, Sunxi, VF610, Arasan, MXC,

Documents
Elevation of Privilege The easy way to threat model Adam Shostack Microsoft

Elevation of Privilege The easy way to threat model Adam Shostack Microsoft

Documents