On 9/13/05, [EMAIL PROTECTED] (Perry E. Metzger) wrote:
Generally speaking, I think software with a security impact should not
be written in C.
I agree. I also note that Paul A. Karger and Roger R. Schell, in their
paper, Thirty Years Later: Lessons from the Multics Security
Evaluation state:
--- begin forwarded text
Delivered-To: [EMAIL PROTECTED]
Date: Fri, 16 Sep 2005 10:01:23 -0400
To: Philodox Clips List [EMAIL PROTECTED]
From: R.A. Hettinga [EMAIL PROTECTED]
Subject: [Clips] Microsoft Scraps Old Encryption in New Code
Reply-To: [EMAIL PROTECTED]
Sender: [EMAIL
--- begin forwarded text
Delivered-To: [EMAIL PROTECTED]
Date: Fri, 16 Sep 2005 10:19:33 -0400
To: Philodox Clips List [EMAIL PROTECTED]
From: R.A. Hettinga [EMAIL PROTECTED]
Subject: [Clips] NSA SME-PED - the handheld for spooks
Reply-To: [EMAIL PROTECTED]
Sender: [EMAIL PROTECTED]
On Thu, Sep 15, 2005 at 08:51:02PM -0700, Bill Frantz wrote:
On 9/13/05, [EMAIL PROTECTED] (Perry E. Metzger) wrote:
Generally speaking, I think software with a security impact should not
be written in C.
I agree. I also note that Paul A. Karger and Roger R. Schell, in their
paper,
Victor Duchovni wrote:
While some of the fault is perhaps in the core language, my contention is
that the real problem is the anemic standard C-library. When working on C
projects that have (and uniformly use) their own mature string handling
libraries (I was a contributor to Tcl in the 90's