Beta
×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Comments

top

Computer Security, The Next 50 Years

Alan Cox Re:Mathematically provably secure? (234 comments)

There are several "provably secure" computer systems. As in you can demonstrate they fulfil certain mathematical constraints and those constraints are absolute. Then you have to write the code and prove the code, then you have to hope the prover is correct and the hardwareis correct. Nothing is 100%.

As to the randomisation stuff - yes I've got examples, and we've hit the same thing in Linux with randomisation. You get cases where memory scribbles cause a problem only if the layout happens to be a specific variant (especially with stack randomisation). From "either it dies or it works" you get "1 in 10,000 times xyz app blows up". That does make debugging much much harder. Of course a good reply to that is "so improve the debugging tools".

more than 8 years ago

Submissions

Alan Cox hasn't submitted any stories.

Journals

Alan Cox has no journal entries.

Slashdot Login

Need an Account?

Forgot your password?