Thomas Leplus
Thomas has more than 20 years of Java development experience with a focus on information security. He is a member of the OpenSSF (part of the Linux Foundation) Memory Safety Special Interest Group whose mission is to understand and reduce memory safety vulnerabilities in Open Source Software. He is also a lifetime member of OWASP and an avid contributor to Open Source projects.
Session
Despite its reputation as a memory-safe language, Java has a dangerous side. In this talk, we will show that a single coding slip or the wrong third-party dependency can compromise your application's memory safety.
You’ll learn:
- What is memory safety and why it matters (even in Java)?
- How attackers can exploit hidden dangers like the Unsafe class.
- Safer alternatives like the Foreign Function and Memory API.
Perfect for developers, architects, and security professionals, this talk bridges the gap between theory and practice, and aligns with today’s growing industry focus on memory safety and software supply chain security.