Showing posts from November, 2018

Gopher Success: The ins and outs of Golang

The story goes that Google’s open-source programming language, Go - or Golang - owes its inception to the long wait-time involved in compiling programs. Tired of the wait and realizing that the software built at Google was not always well served by the languages available to them, three programmers at Google, Robert Griesemer, Ken Thompson and Rob Pike, decided to create their own programming language. The resulting programming progeny is Golang, an open-source, systems-level language capable of bundling efficient compilation, efficient execution, and ease of programming within one language structure. Thefastestgrowing programming language of the year at GitHub and currently ranked 10th in the TIOBE index of the most popular programming languages, Go is making its presence felt amongst the more established programming languages, C++, Python, Java, C#, and so on. Let’s have a look at some of the reasons Go is rapidly becoming a favorite of beleaguered program developers and our own buil…

Putting the Ghost in the Machine: Can Making Software Buggier Make it More Secure?

Software bugs are commonplace, particularly in languages that lack memory safeguards like C and C++. It is easy for programmer errors to result in memory corruption and random code exploitation.
Traditionally, hackers painstakingly trawl through lines of code to discover exploitable programming errors. Any bugs they find must be triaged to determine the level of exploitability. Not all bugs are equal, however, depending on runtime environments and the nature of errors, many bugs may not cause any violation of security goals such as, null pointer dereferences. These bugs may merely cause a program to crash, serious but background microservices are designed to restart programs in such events.
Once the triage phase reveals exploitable errors, hackers develop their exploits, which they deploy back into the code.
This process is laborious and largely manual, but can result in a costly clean-up for the companies involved, as well as potentially causing career-ending repercussions for those w…