利用代码基因组框架揭露供应链攻击.pdf

编号:981612 PDF 30页 11.60MB 下载积分:VIP专享
下载报告请您先登录!

1、#BHUSA BlackHatEventsUncovering Supply Chain Attack with Code Genome FrameworkDhilung Kirat,Jiyong Jang,Doug Schales,Ted Habeck,Ian Molloy,JR Rao#BHUSA BlackHatEvents2AI Supply Chain Security TeamIBM ResearchDhilungDhilung KiratKiratJiyongJiyong JangJang#BHUSA BlackHatEvents$foo install bar Signed w

2、ith a certificate.Lists dependencies.Do you trust it?3#BHUSA BlackHatEvents“You cant trust code that you did not totally create yourself.”Ken ThompsonTURING AWARD LECTURE Reflections on Trusting Trust To what extent should one trust a statement that a program is free of Trojan horses?Perhaps it is m

3、ore important to trust the people who wrote the software.KEN THOMPSON INTRODUCTION I thank the ACM for this award.I cant help but feel that I am receiving this honor for timing and serendip-ity as much as technical merit.UNIX 1 swept into popu-larity with an industry-wide change from central main-fr

4、ames to autonomous minis.I suspect that Daniel Bob-row 1 would be here instead of me if he could not afford a PDP-10 and had had to settle for a PDP-11.Moreover,the current state of UNIX is the result of the labors of a large number of people.There is an old adage,Dance with the one that brought you

5、,which means that I should talk about UNIX.I have not worked on mainstream UNIX in many years,yet I continue to get undeserved credit for the work of others.Therefore,I am not going to talk about UNIX,but I want to thank everyone who has contrib-uted.That brings me to Dennis Ritchie.Our collaboratio

6、n has been a thing of beauty.In the ten years that we have worked together,I can recall only one case of miscoordination of work.On that occasion,I discovered that we both had written the same 20-line assembly language program.I compared the sources and was as-tounded to find that they matched chara

友情提示

1、下载报告失败解决办法
2、PDF文件下载后,可能会被浏览器默认打开,此种情况可以点击浏览器菜单,保存网页到桌面,就可以正常下载了。
3、本站不支持迅雷下载,请使用电脑自带的IE浏览器,或者360浏览器、谷歌浏览器下载即可。
4、本站报告下载后的文档和图纸-无水印,预览文档经过压缩,下载后原文更清晰。

本文(利用代码基因组框架揭露供应链攻击.pdf)为本站 (竿头日上) 主动上传,三个皮匠报告文库仅提供信息存储空间,仅对用户上传内容的表现方式做保护处理,对上载内容本身不做任何修改或编辑。 若此文所含内容侵犯了您的版权或隐私,请立即通知三个皮匠报告文库(点击联系客服),我们立即给予删除!

温馨提示:如果因为网速或其他原因下载失败请重新下载,重复下载不扣分。
客服
商务合作
小程序
服务号
折叠