Julien Acroute (Ingénieur DevOps / Administrateur de bases de données / Formateur - CAMPTOCAMP SA)

Restricting application system calls with Tetragon

By observing the system calls made by an application during normal operation, we can determine which files are used, which processes are created and which network communications are necessary for the application to function properly. Then, thanks to the proactive aspect of Tetragon, we can restrict system calls to those previously observed.

Limiter la surface d'attaque d'une application en observant son comportement!

09/21/2023 | 15h00 -> 15h40 | Room D

Forum: CYBERSECURITY

Keywords: DEVOPS, INFRASTRUCTURE & NETWORKS, OPEN SOURCE (IT SOLUTIONS & SOFTWARE), SECURITY, NETWORKS AND CONNECTION

Observation of the system calls made by an application during regular operation, we can determine which files are used, which processes are created and which network communications are necessary for the application to function properly. Then, thanks to the proactive aspect of Tetragon, we can restrict system calls to those previously observed.

Get last news!
Subscribe to newsletter

Thank you for your interest! Your registration has been successful.

I am interrested in : *

visit

exhibit

I have read the conditions of use of my personal data *

The user expressly agrees that the personal and business information collected by the Organiser (BY Connect SAS) when the user makes an enquiry via this form will be electronically processed in order to allow the complete organisation of the event, and that these data may be used for the promotion of any of the organiser’s events. These data are stored for 3 years.

In accordance with the law, as a visitor you have the right to access and rectify any information held about you. If you wish to exercise this right and obtain the information held about you, please contact BY Connect SAS by e-mailing rgpd@by-connect.com