Concurrency Abstractions for Application Security • Bram Verburg • GOTO 2023

This presentation was recorded at GOTO Aarhus 2023. #GOTOcon #GOTOaar Bram Verburg - Head of Software Security at Bluecode RESOURCES ABSTRACT Automatic memory management all but eliminated entire classes of security vulnerabilities through high-level abstractions for application developers. Statically typed languages aim to reduce exploitable bugs even further. Can additional abstractions around concurrency, isolation and fault-tolerance provide similar benefits? In this talk we explore ideas from the Erlang virtual machine and how they compare to other languages and runtimes in meeting the security requirements of modern networked applications. Do the benefits outweigh the lack of statical type checking? And what challenges remain? [...] TIMECODES 00:00 Intro 01:51 Agenda 02:52 Flashback: Memory management 06:01 Concurrency 09:05 Concurrency abstractions 14:20 Security potential 32:00 Implementations 39:16 Challenges & future work 42:10 Outro Download slides and read the full abstract here: RECOMMENDED BOOKS Francesco Cesarini & Steve Vinoski • Designing for Scalability with Erlang/OTP • Francesco Cesarini & Simon Thompson • Erlang Programming • Saša Jurić • Elixir in Action • Joe Armstrong • Programming Erlang • Dave Thomas • Programming Elixir ≥ 1.6: Functional • Simon St. Laurent • Introducing Erlang • Logan, Merritt & Carlsson • Erlang and OTP in Action • McCord, Tate & Valim • Programming Phoenix 1.4 • #Erlang #Concurrency #Ericsson #WhatsApp #ProgrammingLanguage #FunctionalProgramming #BeaconLanguage #BEAM #CyberSecurity #PhoenixFramework #Gleam #LuErl #Elixirlang #Elixir #Programming #SoftwareEngineering #DynamicTyping #BramVerburg Looking for a unique learning experience? Attend the next GOTO conference near you! Get your ticket at Sign up for updates and specials at SUBSCRIBE TO OUR CHANNEL - new videos posted almost daily.