Common errors in C++ which led to vulnerabilities and their mitigation in KasperskyOS

Modern software contains many vulnerabilities. They lead to security faults while exploitations. Secure development process will help to minimize vulnerabilities.

Secure development lifecycle contains several practices; one of them is "Security Champion" role for the person who controls security requirements from the beginnings. Sergey will explain the role of "Security Champion" in the talk.

Another way of mitigation security risks is "Secure by Design" approach, which KasperskyOS uses. Sergey will show several examples of C++ errors and their mitigations in KaperskyOS.