Conversation
LinuxSecSummit

Linux Security Summit 🐧

Edited 5 days ago
Linux Security Summit North America 2025 kicking off now in Denver, Colorado. No livestream (alas) but videos will be available after the conference.
#linux #linuxsecuritysummit

@lwn @linuxfoundation
2
2
1
LinuxSecSummit

Linux Security Summit 🐧

Reply to @LinuxSecSummit
Edited 5 days ago
The first talk of the conference is Kees Cook @kees on 10 years of the Kernel Self Protection Project (KSPP).

Slides: https://static.sched.com/hosted_files/lssna2025/9f/KSPP%20Ten%20Years%20Deep.pdf
1
13
19
LinuxSecSummit

Linux Security Summit 🐧

Reply to @LinuxSecSummit
Edited 4 days ago
Alexandre Pujol @roddhjav on "Lessons Learned While Making an AppArmor Play Machine".

https://play.pujol.io/
2
0
1
eslerm@cyberplace.social

Mark Esler

Reply to @LinuxSecSummit

@roddhjav !

0
0
1
LinuxSecSummit

Linux Security Summit 🐧

Reply to @LinuxSecSummit
Alan Wandke talking about SeaBee - Security Enhanced Architecture for eBPF.

https://github.com/NationalSecurityAgency/seabee
1
0
1
LinuxSecSummit

Linux Security Summit 🐧

Reply to @LinuxSecSummit
John Johansen talking about Ubuntu Permission Prompting.
1
0
1
LinuxSecSummit

Linux Security Summit 🐧

Reply to @LinuxSecSummit
Xuan Xing & Eugene Rodionov presenting on Linux kernel fuzzing with LKL.

Slides: https://static.sched.com/hosted_files/lssna2025/01/Bypass%20Kernel%20Barriers_%20Fuzzing%20Linux%20Kernel%20in%20Userspace%20with%20LKL.pdf
1
3
5
LinuxSecSummit

Linux Security Summit 🐧

Reply to @LinuxSecSummit
StΓ©phane Graber presenting Incus OS, a minimal image-based OS for deploying Incus at scale.
Slides: https://static.sched.com/hosted_files/lssna2025/24/LSSNA%202025_%20Incus%20OS.pdf
1
5
4
LinuxSecSummit

Linux Security Summit 🐧

Reply to @LinuxSecSummit
Maxwell Bland leading a round table discussion on addressing data-only attacks on the Linux kernel. No great solutions currently, especially for mutable data, but work is ongoing in several areas including capability-like mechanisms, hypervisor introspection, protection keys, and compiler plugins.
1
0
0
LinuxSecSummit

Linux Security Summit 🐧

Reply to @LinuxSecSummit
The final session for Day 1 was Carlos Bilbao on integrating confidential computing into cloud infrastructure. https://static.sched.com/hosted_files/lssna2025/dc/slides_lss.pdf?_gl=1*1jbase4*_gcl_au*MTQ0MzQxNzIzLjE3NTA4OTMwMzA.*FPAU*MTQ0MzQxNzIzLjE3NTA4OTMwMzA
0
0
0
LinuxSecSummit

Linux Security Summit 🐧

Reply to @LinuxSecSummit
Day 2 of LSS-EU kicking off with Casey Schaufler on the state of LSM stacking, now approaching its 15th anniversary.

https://static.sched.com/hosted_files/lssna2025/33/2025-06-LSSNA-Stacking.pdf

#linux #linuxsecuritysummit #infosec #kernel #security
1
2
2
LinuxSecSummit

Linux Security Summit 🐧

Reply to @LinuxSecSummit
Edited 4 days ago
Anna Trikalinou presenting "Binding TDISP & Platform Attestation Reports for Confidential VMs".

https://static.sched.com/hosted_files/lssna2025/49/Binding%20TDISP%20%26%20Platform%20Attestation%20Evidence.pptx
1
0
1
LinuxSecSummit

Linux Security Summit 🐧

Reply to @LinuxSecSummit
Stephen Smalley presenting on SELinux namespacing.

https://static.sched.com/hosted_files/lssna2025/27/NamespacesforSELinux.pdf
1
3
6
LinuxSecSummit

Linux Security Summit 🐧

Reply to @LinuxSecSummit
Tom Hromatka discussing how to handle new syscalls in Seccomp filters.

https://static.sched.com/hosted_files/lssna2025/73/HandlingNewSyscallsInSeccomp.pdf
1
0
0
LinuxSecSummit

Linux Security Summit 🐧

Reply to @LinuxSecSummit
Zheng Zhang presenting "SymBisect: Accurate Bisection for Fuzzer-Exposed Linux Vulnerabilities".

https://static.sched.com/hosted_files/lssna2025/f2/lssna25_ppt-zheng.pptx.pdf
1
0
0
LinuxSecSummit

Linux Security Summit 🐧

Reply to @LinuxSecSummit
Perry Alexander providing a case study of attesting a cross-domain system (CDS), which transfer data from one security domain to another.
1
0
0
LinuxSecSummit

Linux Security Summit 🐧

Reply to @LinuxSecSummit
The final presentation for LSS-NA 2025 is Vedang Parasnis with "eBPF as an Active Security Enforcement Layer Stop DNS Data Breaches : Beyond Passive Observability".

https://static.sched.com/hosted_files/lssna2025/a8/LSS_Kernel_Enforced_DNS_Security.pdf
0
0
0
About social.kernel.org

Terms of service

  1. Please do not use this service in violation of the Linux Kernel Code of Conduct. Doing so will result in your account suspension with the referral of the matter to the CoC committee.

  2. "Repeating"/"boosting" someone else's status on this platform will be treated as endorsement and will fall under rule #1.

  3. You are encouraged to use this platform to promote your work on the Linux Kernel, but there is no restriction on permitted topics (with the exception of anything covered by #1 above).

  4. There is no requirement to post in English, but it should be considered the primary language of communication on this platform.

Privacy notice

The admins of this service have access to all posted statuses. They aren't looking, but if it's something they shouldn't know about, then you should not post it on this platform.

Please see the Linux Foundation Privacy Policy, which applies to this platform as well.

Getting your own account

If you would like an account on this instance, please check that the following applies to you:

  • You are listed in MAINTAINERS or CREDITS

  • OR: You have a kernel.org account or email address

  • OR: You have a long and established history of involvement with the Linux Kernel

If the above is true and you agree with the Terms of Service and Privacy Notice listed above, please use these instructions to request an account: