The State of Kernel Self Protection Project – Kees Cook, Google
Last year the Kernel Self-Protection Project was kicked off to address gaps in Linux’s defensive technologies. With Linux reaching into every corner of modern life, it becomes an ever-increasing target for attackers and much more needs to be done to harden the kernel so it can project itself. A quick overview will be shown of what we’re trying to protect Linux against, as well as the state of the art in available technologies. Also presented will be a summary of the last year’s participation by many people over a wide range of technologies, with a review of KSPP project attempts, accomplishments, active efforts, and an examination of future projects and goals.
About Kees Cook
Kees Cook has been working with Free Software since 1994. He is currently employed by Google to work on IoT Security. From 2006 to 2011 he worked for Canonical as the Ubuntu Security Team’s Tech Lead, and remains on the Ubuntu Technical Board. He has written various utilities including GOPchop and Sendpage, and contributes code to OpenSSH, Inkscape, Wine, MPlayer, and Wireshark. He’s been spending most of his time lately focused on security features in the Linux kernel.