Description:C/C++ has been around for a long time. As you may know, it has issues; lots of them. And we can’t be rid of it; it’s still being used all the time in the creation of new software. But over time, have we gotten better at writing and auditing it? Have the bug types changed? We’ll look at a bunch of code in answering those questions throughout the talk. I hope you’ll join me.
Jared DeMott is a security researcher for Bromium, Inc. He has spoken at security conferences such as DerbyCon, Black Hat, Defcon, ToorCon, Shakacon, DakotaCon, and GRRCon. He is active in the security community by teaching his Application Security course, and has co-authored a book on Fuzzing. Mr. DeMott has been an invited lecturer at prestigious institutions such as the United States Military Academy, and previously worked for the National Security Agency. DeMott holds a PhD from Michigan State University.