tags:mitigation original link: Secure by Design: Google’s Perspective on Memory Safety newsletter link: exploits.club Weekly Newsletter 11
Exploits Club Summary:
Google is aiming to be President Biden’s favorite child. Just a week after the White House’s cry for memory safety, the tech giant released a 12 page paper detailing the company’s approach to mitigating memory corruption bugs. The paper includes a brief history on the bug class, before jumping into Google’s thoughts on how to irradiate it. The approach involves adapting their Safe Coding strategy to low-level languages, employing better exploit mitigations, and using static analysis and fuzzing to identify bugs ahead of deployment. Don’t worry fanboys, they do talk about Rust.