Performance with a S like Security: the eBPF XDP case

Loading
Timeline Slides Search Info
Loading Click here to add:
Add to notification list

extended Berkeley Packet Filter (eBPF) and eXtreme Data Path (XDP) technologies are gaining in popularity in the tracing and performance community in Linux for eBPF and among the networking people for XDP. After an introduction to these technologies, this talk proposes to get a look to the usage of the eBPF and XDP technology in the domain of security. A special focus on Suricata that uses this technology to enhance its performance and by consequences the accuracy of its network analysis and detection. 

Éric Leblond 
Éric is an active member of the open source community. He works on the development of Suricata, the open source IDS/IPS since 2009 and he is currently one of the Suricata core developers. He is a Netfilter Core Team member working mainly on communications between kernel and userland. He is also one of the founders of Stamus Networks, a company providing security solutions based on Suricata.

 

Other media in the channel "2018 Lille"

74 views, 2 this month Glassfish from (IN)Secure admin July 6th, 2018
136 views, 1 this month Shadow on the Wall - Risks and Flaws with Shadowsocks July 6th, 2018
44 views Open Hardware for (software) offensive security July 6th, 2018
33 views, 1 this month Freedom Fighting Mode - Open Source Hacking Harness July 6th, 2018
58 views, 3 this month Expl-iot: IoT Security Testing Framework July 6th, 2018
21 views Io(M)T Security: A year in review July 6th, 2018