31 Aug
2014
31 Aug
'14
1:08 a.m.
On Sat, 30/8/14, Rohan McLeod <rhn(a)jeack.com.au> wrote:
Subject: [luv-talk] Secure and Bug Free ?
To: luv-talk(a)luv.asn.au
Received: Saturday, 30 August, 2014, 9:26 AM
SNIP
"... control and from there to fly-by-wire and then
fly-by-fiber networks;
(removing hundreds of kilo-meters of fire prone complex,
heavy wiring in
the process); ..."
DP:
I once heard somebody referring to the fact that while mechanical, electrical OR optical
control wires/fibres are often severed by bullets or shrapnel, leading to a plane crash,
because a <insert name of the military jet> had a boron fuselage the whole thing
could transmit optical packet signals which would still get through as long as there was
any continuous skin between the communicants.
SNIP
"... anyway the assumption is that the compiler may
introduce bugs, security holes. "
DP:
Many LUVees will have read or heard of Ken Thompson's infamous Turing Award Lecture
This link enables downloading a PDF
http://dl.acm.org/ft_gateway.cfm?id=1283940&type=pdf&ip=202.45.117.… . or if you
prefer select it yourself eg. from
http://amturing.acm.org/award_winners/thompson_4588371.cfm
Given Ken's explanation & the layers of software inside hardware, (was there EVER
a X86 desktop microprocessor if that means where hardware executed X-86 instructions?), I
suspect confidence that no one CAN spy on one's computer(s) is rarely justified!
" ... Apparently the resulting RT OS has very little
functionality, which is
remedied
by supplying that functionality via Linux VM's ..."
DP:
The RT OS runs on a VM which runs on Linux or have I misunderstood? (I REALLY don't
think embedded system gurus will regard that as hard real time any-more, at least on a
normal Linux kernel.)
"... Apparently the OS is available as open-source and binary for
ARM and x86 CPU's, but not in the above secure form at: http://sel4.systems "
DP:
To paraphrase (yes this time I will in a teasing fashion), Ken in the above lecture:
simply examining the source code & compiling it yourself won't guarantee that the
resulting software won't have intentionally programmed effects you don't want but
someone else does. Not that I'm suggesting NICTA would would destroy your purity of
essence with nasty spyware additives; - no sir!
On a related note, Genode released a new framework last Thursday. "Genode is an
offspring of the L4 community" whatever that means. Somebody decided to fork off
& do their own project?
http://genode.org/about/index
31 Aug
31 Aug
1:30 a.m.
New subject: Secure and Bug Free ?
Now that I look at a listing of all the Turing lectures
http://amturing.acm.org/lectures.cfm
I notice Alan Kay has employed a naming system similar to that one of my late Aunties
applied in naming a farm horse, and later a farm dog.
(I wonder if he ever referred to it as a Small talk nyuk nyuk nyuk!)
Dav* - (I'm so pessimistic sometimes I think I'll NEVER manage to read everything
on the World Wide Web!)
5:42 p.m.
New subject: Secure and Bug Free ?
David E Payne wrote:
had a boron fuselage the whole thing could transmit
optical packet signals which would still get through as long as there was any continuous
skin between the communicants.
The 'boron' skin could transmit light ?
" ... Apparently the resulting RT OS has very little
functionality, which is
remedied
by supplying that functionality via Linux VM's ..."
DP:
The RT OS runs on a VM which runs on Linux or have I misunderstood?
What I was trying to convey was:
the RT OS runs on an ARM CPU and various Linux VM's run on the RT OS;
......as I understood the situation !
..... simply examining the source code &
compiling it yourself won't guarantee that the resulting software won't have
intentionally programmed effects you don't want but someone else does.
or just unintended bugs;
the problem of 'compiler bugs ' if you are obsessive about bugs;
seems to involve some kind of long backwards historical regression
eg to get current compiler binary CBn required CSn and previous
compiler binary CBn-1;
but to get CBn-1 required CSn-1 and CBn-2;
but to get CBn-2 required CSn-2 and CBn-3
.................etc the regression presumably terminating with
someone writtinig a compiler in assembler ?
Not that I'm suggesting NICTA would would
destroy your purity of essence with nasty spyware additives; - no sir!
Well I'm glad you explained that ; it was causing many sleepless nights !
regards Rohan McLeod
3132
days inactive
3133
days old
2 comments
2 participants
participants (2)
-
David E Payne -
Rohan McLeod