[cap-talk] Security by safe language processing
David-Sarah Hopwood
david-sarah at jacaranda.org
Sun Sep 6 17:39:56 PDT 2009
John Carlson wrote:
> Seems like with all this talk of security and compilers, it's time to
> bring up Ken Thompson's paper:
>
> http://cm.bell-labs.com/who/ken/trust.html
That particular attack can be defended against by
"diverse double compiling":
<http://www.dwheeler.com/trusting-trust/>
which is a good idea anyway because it will catch some categories
of compiler bug.
--
David-Sarah Hopwood ⚥ http://davidsarah.livejournal.com
More information about the cap-talk
mailing list