Autodesk Home Page
Autodesk University
Register now
AU Class
AU Class
class - AU

Introducing Secure Development Methods and Concepts for AutoCAD Plug-ins

,
+2 more
Compartir esta clase
Busque palabras clave en vídeos, diapositivas de presentación y materiales:

Descripción

AutoCAD software has been the target of hacker attacks for industrial espionage. Many of these hackers have been primarily driven to steal intellectual property. There are a number of steps that the AutoCAD Security Team have implemented to enhance the security in AutoCAD 2016 software. This class will cover the topic of securing your AutoCAD software plug-ins. We will examine digital signatures and cryptographic algorithms, including public key infrastructure (PKI). Learn how to get certificates, creating your own self-signed certificates. You will also learn how to sign your executable including LISP files using your certificate and deploy them. And finally, you will learn the best practices when loading plug-ins.

Aprendizajes clave

  • Discover digital signature and public key infrastructure (PKI)
  • Learn how to create and deploy a self-signed x509 certificate
  • Learn how to sign the executable using the x509 certificate
  • Learn how to determine the trusted plug-in from the trusted publisher dialog

Oradores

  • George Varghese
    George Varghese has been with Autodesk, Inc., for over 15 years, working in the AutoCAD Group, and primarily in the AutoCAD Software Development Group. He worked on AutoCAD software features like Tool Palette, Table, Ribbon, and others. Lately, he has started working on the security features in AutoCAD software, dealing with digital signatures in AutoCAD software. He worked on the feature to be able to digitally sign lisp files. The lisp files are the primary threat vectors used by attackers to target AutoCAD software users. He worked on the “Trusted Publisher” feature that aides the user in discerning the plug-ins that come from a trusted source. He has given presentations on threat modeling to a number of internal Autodesk groups. He also gave a presentation on cryptographic algorithms and x.509 certificates to an internal Autodesk audience in an informal setting.
  • Davis Augustine
    Davis Augustine has been developing software since the early PC days and has been at Autodesk, Inc., in the AutoCAD Software Group since the R12 days. He has specialized at various times in graphics, database, file i/o, native C++, APIs, and performance. He has spent the past year or so on security issues.
  • Tekno Tandean
  • Eileen Sinnott
    Eileen Sinnott was a programmer for many years at Autodesk, Inc., where she worked on the AutoCAD software product before becoming a software development manager. She manages a team of programmers who are developing features for the next release of AutoCAD software. Recently she has been focused on the security of the product and has presented in various venues, including at the 2013 Virus Bulletin Conference in Berlin and at internal technical summits.
Current Time 0:00
Duration 1:30:19
Loaded: 0.18%
Stream Type LIVE
Remaining Time 1:30:19
 
1x
  • Chapters
  • descriptions off, selected
  • subtitles off, selected
  • en (Main), selected
Transcript

No transcript

Downloads

handout

Etiquetas

Producto
AutoCAD
Sectores
IT/Software development
Site Development (General civil engineering)
Temas
Programmer / SW Engineer
IT Manager
Drafter
Technology Manager
Systems Engineer
Design
Customization
Automation, Integration, & Customization
CAD Management & IT
Software Development
Feedback Link