Beta
×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

The Computer Science of Insecurity

mikejuk (1801200) writes | more than 2 years ago

Security 0

mikejuk (1801200) writes "After security by obscurity we now have security by computer science! The idea explained at this year's 28th Chaos Computer Congress (28C3) by Meredith Patterson was simply that, if you build input languages and protocols that are too powerful, from the point of view of grammar, then you deserve all you get. If a protocol is Turing-complete then recognizing valid input is formally undecidable. Only by reducing the sophistication to context free or regular grammars can we protect against "creative" uses of software. See the video of the presentation — you wont be bored."
Link to Original Source

Sorry! There are no comments related to the filter you selected.

Check for New Comments
Slashdot Login

Need an Account?

Forgot your password?