From: Marin David Condic <mcondic.auntie.spam@acm.org>
Subject: Re: Safety-Critical Systems Developed Using C++
Date: Mon, 22 Jan 2001 10:20:37 -0500
Date: 2001-01-22T15:20:01+00:00 [thread overview]
Message-ID: <3A6C4FC5.28DD7268@acm.org> (raw)
In-Reply-To: UvvRoGcyz8+k@eisner.decus.org
I'll be the *last* one to claim that Ada doesn't enhance reliability and reduce risk. I hope that's
clear. My statement that it is possible to write reliable software in C relates more to the fact
that there are more ways of insuring correctness than just compiler/language features. For example,
extensive code-reads, thorough unit testing, integration testing, language preprocessors (lint?)
automated test tools, various forms of analysis, etc. all figure in to building a reliable piece of
software. If I don't have language support, I can rely more heavily on some of the other available
tools. Albeit, at considerably more expense. And therein lies the rub. If it costs lots more to
insure reliability in C then there is less likelihood it will get done.
I'm still a proponent of the notion that in safety critical systems, Ada should be used where
possible. Its just that you don't always have this capability. And let's remember that there were
safety critical systems that were written in assembly language and they worked fine too. So it *can*
be done. Just not as easily.
MDC
Larry Kilgallen wrote:
> As a customer (victim?) rather than provider of air travel,
> I am less interested in the theoretical possibility of
> getting it right and much more concerned about what the
> probability is they got it right on some particular plane.
--
======================================================================
Marin David Condic - Quadrus Corporation - http://www.quadruscorp.com/
Send Replies To: m c o n d i c @ q u a d r u s c o r p . c o m
Visit my web site at: http://www.mcondic.com/
"I'd trade it all for just a little more"
-- Charles Montgomery Burns, [4F10]
======================================================================
next prev parent reply other threads:[~2001-01-22 15:20 UTC|newest]
Thread overview: 48+ messages / expand[flat|nested] mbox.gz Atom feed top
2001-01-17 3:53 Safety-Critical Systems Developed Using C++ Ken Garlington
2001-01-17 5:20 ` Richard Andrews
2001-01-17 17:02 ` Wes Groleau
2001-01-17 15:22 ` Mario Grgic
2001-01-17 16:20 ` Ian Wild
2001-01-17 16:44 ` Steve Nester
2001-01-17 17:04 ` Greg Comeau
2001-01-17 17:28 ` Marin David Condic
2001-01-17 23:58 ` Ken Garlington
2001-01-19 4:00 ` Flavius Vespasian
2001-01-19 7:33 ` Gerhard Häring
2001-01-19 15:28 ` Philip Anderson
2001-01-18 0:47 ` k_e_n_s_a_i
2001-01-18 2:02 ` Marin David Condic
2001-01-17 18:57 ` John Luebs
2001-01-18 8:42 ` Lao Xiao Hai
2001-01-18 13:49 ` Ken Garlington
2001-01-18 14:40 ` Peter Amey
2001-01-18 17:30 ` r_c_chapman
2001-01-18 20:45 ` Phil Staite
2001-01-19 10:40 ` Tarjei T. Jensen
2001-01-19 16:05 ` Phil Staite
2001-01-18 15:03 ` Marin David Condic
2001-01-18 14:54 ` Marin David Condic
2001-01-18 21:47 ` Mike Silva
2001-01-18 15:24 ` Ted Dennison
2001-01-18 16:05 ` Sahan Amarasekera
2001-01-18 19:12 ` Ted Dennison
2001-01-18 22:40 ` Marin David Condic
2001-01-19 11:27 ` Dewi Daniels
2001-01-20 0:46 ` ian.kerr2
2001-01-20 3:54 ` tmoran
2001-01-20 19:22 ` Ken Garlington
2001-01-18 18:42 ` k_e_n_s_a_i
2001-01-18 19:24 ` Britt Snodgrass
2001-01-18 22:57 ` Marin David Condic
2001-01-18 23:10 ` Jeffrey Carter
2001-01-19 22:22 ` Marin David Condic
2001-01-20 4:30 ` Larry Kilgallen
2001-01-22 15:20 ` Marin David Condic [this message]
2001-01-22 16:46 ` Robert Dewar
2001-01-18 22:52 ` Marin David Condic
2001-01-19 12:10 ` Ken Garlington
2001-01-21 23:17 ` dvdeug
2001-01-19 8:22 ` Daryle Walker
2001-01-19 9:19 ` Ian Wild
2001-01-19 12:13 ` Ken Garlington
2001-01-19 12:14 ` David Kristola
replies disabled
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox