Room 4 

11:40 - 12:40 


Talk (60 min)

Secure development with C++ - Lessons and techniques

We will look at lessons learned through developing security products using C++.


Writing secure C++ code is hard. We will try to take a lesson from other industries where security is important and see what measures we can put in place to make our C++ code more secure.
We will talk about practical tools and techniques, language features to use and to avoid, fuzzers and sanitizers, hardening using compiler options, methodology, some UB to be aware of, and the general feasibility of using C++ where security is important.

Helge Penne

Helge has worked professionally with C++ since the early 1990s, and has also developed SW using other languages like C#, Java and Rust.
He has worked mostly in the embedded space, and has developed SW for autonomous submarines, control systems, radars, data recorders, airborne systems, and various other things.
He currently works at Thales Norway where he is a SW developer and architect, and also tinkers a little with process and methodology.