ElixirConf 2023 - Michael Lubas - Elixir Security: a Business and Technical Perspective

Discover how Elixir's memory safety, concurrency model, and strong community make it a secure choice for building robust applications. Learn from real-world examples how organizations like Pinterest and GitHub benefit from Elixir's security features.

Key takeaways
  • Elixir is a memory-safe language, which eliminates buffer overflows and other memory corruption vulnerabilities.
  • Elixir’s concurrency model, based on message passing, prevents data races and thread safety issues.
  • Phoenix, the most popular web framework for Elixir, is designed to be secure by default, with features like CSRF protection and input validation.
  • Elixir has a strong community of security experts who are developing tools and resources to help developers write secure code.
  • Elixir is used by a number of large organizations, including Pinterest, GitHub, and Bleacher Report, who have reported significant security benefits from using the language.
  • Elixir is a relatively new language, but it is rapidly gaining popularity due to its security benefits and other advantages.