Writing secure code in Python
- Liffey B
- Start (Dublin time):
- Start (your time):
- 45 minutes
The talk will analyze a series of vulnerabilities that given some common mistakes might end up damaging your Python programs (with lots of exemples!). At the end, a precaution and audit method will be presented.
Is your Python code secure? This talk will show how some inattentions, mistakes and assumptions that we, as developers, carry in our code can lead to serious vulnerabilities in our applications. All of that, of course, with lots of examples! At the end, the talk will present a simple way to audit Python code in order to facilitate the maintenance of your security with the identification of possible vulnerabilities.
- Learn how
eval(), pickle, and pip are vulnerable to arbitrary code execution
- Understand the importance of cryptographically-secure randomness
- Learn how to audit your code and keep your programs secure
- ... and more!