WireGuard on BSD and writing C for all the wrong reasons |
Abstract
The Internet is a dangerous place, no longer can we rely on public networks for safely carrying our data. Every day, businesses rely on virtual private networks (VPNs) for transferring sensitive information, however how much can we rely on the popular implementations. WireGuard is a modern VPN design that is so simple, you can get a strong understanding in just 15 minutes. We will go through the high level operations and the intended security benefits of the protocol. From there we can analyse a real world implementation and see how modern tools allow us to test, debug and harden kernel level development. This talk is based on things learned during the development of a BSD kernel module for WireGuard and is appropriate for both technical and non-technical skillsets. |