Implementing File Systems to Minimize Security Threats
Implementation problems that pose security threats fall into a set of common issues:
Buffer handling.
Authentication and identification.
Access control.
Handle management.
None of these issues is particularly novel. These issues are well known, yet these problems recur in drivers. Part of the problem is that most existing development tools do not warn users or mitigate against these types of problems. However, using judicious defensive development techniques, most of these problems can be eliminated.
This section includes the following topics:
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for