[cap-talk] Reinterpreting POLA - "Authority Must Not Exceed Trust"
Toby Murray
toby.murray at comlab.ox.ac.uk
Thu Sep 20 04:07:48 EDT 2007
On Thu, 2007-09-20 at 04:31 +0100, David Hopwood wrote:
> Toby Murray wrote:
> > Suppose we had some magical means to produce CSP models from real code,
> > such that the model produced was guaranteed to exhibit all possible
> > behaviours of the code.
>
> That wouldn't be magical: CSP is a real (implementable) programming
> language.
No you're right. My use of the word "magical" was only meant to hint
that this could be a difficult thing to achieve.
More information about the cap-talk
mailing list