> https://tnsr.org/2021/06/cyber-risk-across-the-u-s-nuclear-enterprise/
Grazie Diego. Solo un commento veloce. "the F-35 will require at least 8 million lines of software code. This software will support the F-35 in a variety of missions, including air-to-air combat; air-to-ground attack; electronic attack; and intelligence, surveillance, and reconnaissance ... A recent report from the U.S. Government Accountability Office probed cyber vulnerabilities in U.S. weapons systems and arrived at some worrisome conclusions. This report noted that the Defense Department routinely finds mission-critical cyber vulnerabilities during operational testing of weapons systems that are under development, pointing out that "using relatively simple tools and techniques, testers were able to take control of systems and largely operate undetected". Even worse, the Government Accountability Office found that the discovered vulnerabilities represented only a fraction of total vulnerabilities because not all weapons systems were tested ... An increase in the technological sophistication of software can break this link in the short term. For example, compilers that translate high-level languages into machine code enable the development of programs that are less complex and more easily understandable (at the source code level) for a given level of functionality (as defined by what the computer actually does at the machine code level). But in the absence of continuous increases in sophistication of software-building technology, functionality means more complexity. 8 milioni di LOC, di cui la stragrande maggioranza in C/C++ ? Nell'industria la media di bug รจ 15/50 per 1000 linee, quindi, anche considerando il limite inferiore, siamo a 120.000 bug, compreso bug "fine del mondo" Antonio _______________________________________________ nexa mailing list [email protected] https://server-nexa.polito.it/cgi-bin/mailman/listinfo/nexa
