It's really encouraging to see such a rigorous approach to performance in rustls. It's not enough to push for a Rust-based implementation on safety grounds. It must match (or beat!) the incumbents on all relevant metrics too! memorysafety.org/blog/rustls-pe…

Google announced today that they've provided a grant of $1,000,000 to the Rust Foundation to support efforts to improve interoperability between Rust and C++. They're also going to aggregate and publish audits for the Rust crates that they use in their open-source projects. The

[NEWS] "Google Contributes $1M to Rust Foundation in Support of C++/Rust 'Interop Initiative'" ➡️ rustfoundation.org/news/google-co… #rustlang

Mishaal Rahman Android's experience with Rust has been excellent. My team built the first major Rust component (keystore), which is a medium-sized component with significant concurrency. We're now three years in and it has been basically flawless.

Google has provided a grant of $1M to the Rust Foundation to improve Rust code interop with C++ codebases. We’re also furthering our commitment to the open-source Rust community by aggregating and publishing audits for Rust crates we use in open-source projects... 1/3

Do yourself a favour today and read the replies to this. I promise you won’t regret it.

We've now seen #rustlang adopted by so many teams in so many settings that I'm thrilled to get to talk about some of the additional benefits (as well as debunking some myths...) of adopting Rust on your team. It's about more than just performance and security!

EU Commission: “End encryption!” Internet users: “End-to-end encryption!”

Popping in to say that a presidential candidate advocating to stop all childhood vaccines should be national news and disqualifying. The media failure literally takes my breath away. Childhood vaccines isn't a both sides issue you fucking idiots, it's like a public health thing.

I’m super excited about this blogpost. The approach is so counterintuitive, and yet the results are so much better than anything else that we’ve tried for memory safety. We finally understand why. security.googleblog.com/2024/09/elimin…

The drop in Android's memory safety vulnerabilities is astonishing. It's counterintuitive, but prioritizing memory-safe languages in new code quickly reduces memory-safety risks. Once we turn off the tap of new vulnerabilities, they start decreasing exponentially.

Google's implementing #SafeCoding to build more secure software, and the results are impressive. Android saw a massive drop in memory safety bugs by switching to languages like #Rust. Read more in our latest blog: security.googleblog.com/2024/09/elimin…

🦀 Eliminating Memory Safety Vulnerabilities at the Source Rust caused memory safety vulnerabilities % in Android to drop from 76% to 24% over 6 years. 💡Key insight: new code is disproportionately responsible for bugs By Jeff Vander Stoep, Alex Rebert security.googleblog.com/2024/09/elimin…

I published an introductory post on how to use return-oriented programming (ROP) to bypass security mechanisms, like ASLR, W^X, and stack canaries 👾 oliviagallucci.com/how-to-use-rop… #OffensiveSecurity #InfoSec #ROP

NEW EPISODE! You may not be rewriting the world in Rust, but if you walk like the Android team, you'll drive down your memory-unsafety vulnerabilities more than 2X below the industry average over time! 🎉 securitycryptographywhatever.com/2024/10/15/a-l… youtu.be/WL4CgVI6p9g