I don't think binary blobs and binary drivers can be completely eliminated in the foreseeable future, because commercial plug-in hardware can't be eliminated. That suggests a need for a secure platform that can isolate them in a sandbox. I doubt that can be accomplished by system software alone; the hardware would need some basic security functionality to hard-limit the resources a block of code could gain access to, before running it. That could represent a future task for open hardware development; the companies will certainly never do it.
-------------- Original message ---------------------- From: luc <[EMAIL PROTECTED]> > Le lundi 16 octobre 2006 à 23:36 +0200, Attila Kinali a écrit : > > On Mon, 16 Oct 2006 19:31:07 -0200 > > "Vinicius Santos" <[EMAIL PROTECTED]> wrote: > > > > > There isn't! And that's what I mean: Before having that vunerability > > > known, it was all > > > about "Binary blobs could be insecure", but now it's a proven fact > > > that it is, and it > > > takes more than 2 years for a vendor to (probably) fix after the issue > > > is reported. > > > It's now a real issue that makes OGP even MORE of a solution. It's not > > > only about > > > hobbist who want to develop hardware and drivers, it's about the freedom > > > to > run > > > "secure hardware". > > > > 99.999% of the users out there dont care about security. > > Otherwise we wouldn't have so many worm and spam mail. > > And i'm not only talking about windows users. > You're right, but about getting more exposure for OGP it's just here an > opportunity. That don't mean that one has to focus on security, neither > to wake-up the end-user. It's just a good pretext to speak to the > community of developer. > Maybe it's a little bit to soon, but this issue with Nvidia will reload > the topic about the specification and so on. Folks from the kernel > should not appreciate this security issue which they can't control, > hence, an OGC will seem to be the only way. > In the end, distros should not feel right in their shoes because they're > the first to receive the complaint from their user-base and because they > also have the need of this driver indeed. Here again, an OGC will seem > to be the only way. > > > > It's really a minority for whom security is an argument. > > The others.. just use a el-cheapo firewall and think > > they have done everything they can do and everything > > else is bad luck (if they even think that far). > > > > Attila Kinali > > > > _______________________________________________ > Open-graphics mailing list > [email protected] > http://lists.duskglow.com/mailman/listinfo/open-graphics > List service provided by Duskglow Consulting, LLC (www.duskglow.com) _______________________________________________ Open-graphics mailing list [email protected] http://lists.duskglow.com/mailman/listinfo/open-graphics List service provided by Duskglow Consulting, LLC (www.duskglow.com)
