PP075: Kernel Vs. User Mode In Endpoint Security Software

https://is1-ssl.mzstatic.com/image/thumb/Podcasts116/v4/02/0a/b5/020ab5fc-1a5b-3841-adfc-75d4e7e8de4b/mza_5791319916606868037.jpg/600x600bb.jpg

Packet Protector

Packet Pushers

88 episodes

2 days ago

Just what’s inside that commercial software you bought? Does it contain open-source components, NPM packages, or other third-party code? How could you find out? The answer is a Software Bill of Materials, or SBOM, a machine-readable inventory of a finished piece of software. Why should you care about SBOMs? Our guest, Natalie Somersall, is here... Read more »

All content for Packet Protector is the property of Packet Pushers and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

Technology

Business,

Careers

PP075: Kernel Vs. User Mode In Endpoint Security Software

Packet Protector

43 minutes 39 seconds

3 months ago

PP075: Kernel Vs. User Mode In Endpoint Security Software

Microsoft is rethinking allowing endpoint security software to run in the Windows kernel (including third-party and Microsoft’s own endpoint security software). While there are benefits to running security software in the kernel, there are also serious downsides (see the CrowdStrike outage). Dan Massameno joins JJ and Drew on Packet Protector to talk about the role... Read more »