Enigma 2023 has ended
Back To Schedule
Wednesday, January 25 • 9:00am - 10:00am
Fireside Chat: The State of Memory Safety

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

The most ubiquitous kind of vulnerability that plagues modern computing is the memory safety vulnerability—where the underlying programming language doesn't inherently protect data structures in memory. When "memory unsafe" code fails, it can allow attackers access to arbitrary pieces of system memory, and potentially execution of malicious code. Over the years, writing code in memory safe languages, "sandboxing" memory unsafe code, and raising awareness around memory unsafety have been important steps in more generally protecting computerized and networked systems against this class of threats. But where are we at? What is the current state of memory unsafety? Join Yael and Amira from Consumer Reports, who are currently working on a report surveying the landscape of memory safety, in a fireside conversation with Alex Gaynor and Josh Aas, two key informants on the quest to squash this pernicious class of bugs.

avatar for Amira Dhalla

Amira Dhalla

Consumer Reports
Amira Dhalla has spent over a decade in technology working on issues related to digital rights, privacy, security, and equity with global organizations and communities. Together, she works with educators and activists to design participatory curriculum and resources to make emerging... Read More →

avatar for Yael Grauer

Yael Grauer

Consumer Reports
Yael Grauer works at Consumer Reports managing Security Planner, a free, easy-to-use guide to staying safer online. Her background is in investigative tech reporting, and she has covered privacy and security for over a decade for various tech publications. She has extensively researched... Read More →

Alex Gaynor

Federal Trade Commission
Alex Gaynor is a software security engineer. He's a founder and principal at Fish in a Barrel, working on systemic solutions to classes of vulnerabilities. He's previously been Chief Information Security Officer at Alloy and an engineer at Mozilla and the United States Digital Service... Read More →
avatar for Josh Aas

Josh Aas

Internet Security Research Group and Prossimo
Josh Aas co-founded and currently runs Internet Security Research Group (ISRG), the nonprofit entity behind Let's Encrypt, the world's largest certificate authority helping to secure more than 290 million websites. He also spearheaded ISRG’s latest projects, one focused on bringing... Read More →

Wednesday January 25, 2023 9:00am - 10:00am PST
Santa Clara Ballroom