From: "Warren W. Gay VE3WWG" <ve3wwg@cogeco.ca>
Subject: Re: Improving Ada's image - Was: 7E7 Flight Controls Electronics
Date: Tue, 15 Jun 2004 13:06:15 -0400
Date: 2004-06-15T13:06:15-04:00 [thread overview]
Message-ID: <a%Fzc.16351$nY.585525@news20.bellglobal.com> (raw)
In-Reply-To: <pan.2004.06.15.11.40.09.413904@email.ro>
David Starner wrote:
> On Mon, 14 Jun 2004 14:30:08 +1200, Berend de Boer wrote:
>>>>>>>"Marin" == Marin David Condic <nobody@noplace.com> writes:
>>
>> Marin> But you *can* write a perfectly secure, reliable system in
>> Marin> languages other than Ada. Maybe (maybe!) it requires more
>> Marin> work, but it *can* be done.
>>
>>So far the real world has not produced a reliable secure OS in C. Can
>>it be done? I doubt it.
>
> What OSes are you looking at? You can't expect the major commercial
> operating systems to be reliable and secure, because the public doesn't
> want reliable and secure.
Well, of course, it depends again on what you consider reliable
and secure to mean (as Alexander Kopilovich has said). Some of
the public _does_ want reliable and secure (depending on what that
means).
Actually, I'll bet if you asked them, they would want
"reliable and secure", in addition to everything else (they
want it all, for lowest price etc. etc.)
Ask anyone who's had to pay someone to reload their O/S
due to a virus, if they want a secure O/S? Ask them after
they've lost all of their digital photos! (I know people \
that have suffered this fate).
> A reliable and secure operating system would run
> on one standard set of simple predictable hardware.
Predictable yes. Simple is what we would want, because
simple is easier to validate. But I am not certain
that simplicity must be a prerequisite.
> The public wants
> something that will run on their current hardware.
To a point. We all want faster and more powerful too.
> A reliable and secure
> operating system would probably run everything in its own virtual machine
> anyway;
This only shifts responsibility from one layer to another. There
still must be validation, just at a different level. The bottom
line doesn't really change.
> the public wants things to go fast.
Speed should not matter. Hardware is always run at suboptimal
speed for reliability reasons. But this is a hardware tradeoff,
not a software security issue (except possibly for complex
timing issues).
> A reliable and secure
> operating system can't support kludges that open up security holes;
I think that it is generally agreed that we don't want kludges ;-)
> the
> public wants their old programs to run (and run fast) on their new system.
Backwards compatibilities do carry forward certain risks.
> A reliable and secure operating system would reduce or eliminate the usage
> of a root-like user; the public doesn't want to jump through hoops
> every time they want to fix the clock or install a program.
This is an interesting area of study. More study on this
problem should be encouraged. Unfortunately, there seems to
be an overall decline in the interest of O/S design these
days (there was a paper released about this, some time ago,
which was discussed in this group (discussed last year?))
> A reliable,
> secure operating system is simple;
You are listing simplicity as a prerequisite for secure. I do agree
that a simple system is easier to validate. But it is by no means
a prerequisite, as long as you have a method to validate your
design.
> the public wants fast (highly tuned)
> and featureful operating system.
Agreed, that there are tensions for compromise. But what I have
been saying (and perhaps others), is that surely there are
ways to do better than what we have now.
> It's actually quite easy to write a secure, reliable OS in C. It looks
> something like this:
>
> main () {
> for (;;) {}
> }
Well, we can do that in Ada too, and even multitask it! ;-)
> It's making a _usable_ secure, reliable OS that's hard, and most of that
> is independent of programming language.
Well, you and I could argue the "most" or "not" part. I firmly
believe that Ada would greatly influence the design of an operating
system, such that better engineering and fewer defects would
prevail. Obviously, if it is designed incorrectly, it would still
easily give away priviledges when it wasn't appropriate.
--
Warren W. Gay VE3WWG
http://home.cogeco.ca/~ve3wwg
next prev parent reply other threads:[~2004-06-15 17:06 UTC|newest]
Thread overview: 216+ messages / expand[flat|nested] mbox.gz Atom feed top
2004-05-30 11:46 Improving Ada's image - Was: 7E7 Flight Controls Electronics Per Dalgas Jakobsen
2004-05-30 16:13 ` Pascal Obry
2004-05-30 18:03 ` Luke A. Guest
2004-05-30 19:09 ` Per Dalgas Jakobsen
2004-05-31 2:28 ` Richard Riehle
2004-05-31 15:33 ` Wes Groleau
2004-06-01 2:56 ` Hyman Rosen
2004-06-01 14:51 ` Wes Groleau
2004-06-07 16:29 ` Warren W. Gay VE3WWG
2004-06-07 17:44 ` Hyman Rosen
2004-06-08 16:09 ` Warren W. Gay VE3WWG
2004-06-08 17:30 ` Hyman Rosen
2004-06-08 20:38 ` Warren W. Gay VE3WWG
2004-06-08 22:23 ` Hyman Rosen
2004-06-09 2:27 ` Warren W. Gay VE3WWG
2004-06-09 4:41 ` I R T
2004-06-09 6:43 ` Richard Riehle
2004-06-10 6:53 ` Randy Brukardt
2004-06-12 3:16 ` Robert I. Eachus
2004-06-09 6:39 ` Hyman Rosen
2004-06-09 7:44 ` I R T
2004-06-09 12:13 ` Georg Bauhaus
2004-06-09 12:34 ` Warren W. Gay VE3WWG
2004-06-09 21:13 ` Hyman Rosen
2004-06-10 2:51 ` Wes Groleau
2004-06-10 15:57 ` Hyman Rosen
2004-06-10 17:18 ` Pascal Obry
2004-06-10 12:13 ` Marin David Condic
2004-06-11 12:48 ` Warren W. Gay VE3WWG
2004-06-11 17:31 ` Marin David Condic
2004-06-14 2:30 ` Berend de Boer
2004-06-14 2:47 ` I R T
2004-06-14 3:10 ` Hyman Rosen
2004-06-14 11:49 ` Marin David Condic
2004-06-14 16:28 ` Warren W. Gay VE3WWG
2004-06-14 17:34 ` Hyman Rosen
2004-06-15 11:35 ` Marin David Condic
2004-06-15 23:02 ` Brian May
2004-06-16 11:37 ` Marin David Condic
2004-06-21 14:56 ` Jacob Sparre Andersen
2004-06-23 20:19 ` Randy Brukardt
2004-06-15 16:30 ` Warren W. Gay VE3WWG
2004-06-15 11:26 ` Marin David Condic
2004-06-15 16:43 ` Warren W. Gay VE3WWG
2004-06-15 18:51 ` Hyman Rosen
2004-06-15 21:02 ` Warren W. Gay VE3WWG
2004-06-15 22:01 ` Hyman Rosen
2004-06-15 22:08 ` Ed Falis
2004-06-15 22:26 ` Hyman Rosen
2004-06-17 15:50 ` Robert I. Eachus
2004-06-17 16:12 ` Hyman Rosen
2004-06-17 21:05 ` Pascal Obry
2004-06-17 21:47 ` Hyman Rosen
2004-06-17 22:18 ` Georg Bauhaus
2004-06-18 5:19 ` Brian May
2004-06-18 14:44 ` Georg Bauhaus
2004-06-17 23:02 ` Brian May
2004-06-18 7:50 ` Martin Dowie
2004-06-19 20:40 ` Robert I. Eachus
2004-06-19 18:10 ` Ragged arrays of strings (Was: Improving Ada's image) Jacob Sparre Andersen
2004-06-20 22:01 ` Pascal Obry
2004-06-19 20:54 ` Improving Ada's image - Was: 7E7 Flight Controls Electronics Robert I. Eachus
2004-06-20 2:20 ` Jeffrey Carter
2004-06-20 4:24 ` tmoran
2004-06-20 15:06 ` Dr. Adrian Wrigley
2004-06-21 15:30 ` Enum'Image (Was: Improving Ada's image) Jacob Sparre Andersen
2004-06-21 16:06 ` Dr. Adrian Wrigley
2004-06-21 16:53 ` Alexander E. Kopilovich
2004-06-22 21:38 ` Jacob Sparre Andersen
2004-06-23 15:42 ` Alexander E. Kopilovich
2004-06-23 17:15 ` Larry Kilgallen
2004-06-22 13:26 ` Dmitry A. Kazakov
2004-06-23 16:04 ` Frank J. Lhota
2004-06-25 0:07 ` Enum'Image Jacob Sparre Andersen
2004-06-25 15:55 ` Enum'Image Frank J. Lhota
2004-06-23 20:29 ` Enum'Image (Was: Improving Ada's image) Randy Brukardt
2004-06-23 23:35 ` Dr. Adrian Wrigley
2004-06-25 0:15 ` Jacob Sparre Andersen
2004-06-26 5:11 ` Improving Ada's image - Was: 7E7 Flight Controls Electronics Robert I. Eachus
2004-06-27 1:00 ` Jeffrey Carter
2004-06-27 2:33 ` Robert I. Eachus
2004-06-15 23:30 ` Dale Stanbrough
2004-06-15 21:59 ` Marin David Condic
2004-06-25 4:21 ` Enum'Image (Was: Improving Ada's image) Larry Kilgallen
2004-06-15 19:28 ` Improving Ada's image - Was: 7E7 Flight Controls Electronics Alexander E. Kopilovich
2004-06-15 21:04 ` Warren W. Gay VE3WWG
2004-06-15 22:13 ` Marin David Condic
2004-06-16 0:05 ` Alexander E. Kopilovich
2004-06-15 22:08 ` Marin David Condic
2004-06-15 23:06 ` tmoran
2004-06-16 11:47 ` Marin David Condic
2004-06-17 1:33 ` Brian May
2004-06-17 12:09 ` Marin David Condic
2004-06-16 0:56 ` Alexander E. Kopilovich
2004-06-16 11:54 ` Marin David Condic
2004-06-15 1:21 ` Alexander E. Kopilovich
2004-07-01 4:08 ` Dave Thompson
2004-07-04 19:00 ` Robert I. Eachus
2004-06-14 11:45 ` Marin David Condic
2004-06-14 13:20 ` Larry Kilgallen
2004-06-15 11:39 ` Marin David Condic
2004-06-19 23:14 ` Pylinius
2004-06-15 11:41 ` David Starner
2004-06-15 16:29 ` Richard Riehle
2004-06-15 17:06 ` Warren W. Gay VE3WWG [this message]
2004-06-11 17:53 ` Hyman Rosen
2004-06-11 18:56 ` Marin David Condic
2004-06-11 23:23 ` Hyman Rosen
2004-06-12 3:08 ` Ada BIND was: " Robert I. Eachus
2004-06-12 12:03 ` Marin David Condic
2004-06-12 12:47 ` Jeff C,
2004-06-13 12:22 ` Marin David Condic
2004-06-14 16:33 ` Warren W. Gay VE3WWG
2004-06-13 6:08 ` Russ
2004-06-13 10:28 ` Georg Bauhaus
2004-06-13 14:49 ` Stephen Leake
2004-06-13 20:51 ` Russ
2004-06-13 23:15 ` Robert I. Eachus
2004-06-14 2:09 ` Hyman Rosen
2004-06-15 0:02 ` Alexander E. Kopilovich
2004-06-15 2:40 ` Brian May
2004-06-15 12:46 ` Frank J. Lhota
2004-06-15 18:53 ` Jeffrey Carter
2004-06-15 22:09 ` Hyman Rosen
2004-07-01 4:08 ` Dave Thompson
2004-06-14 16:43 ` Warren W. Gay VE3WWG
2004-06-15 11:47 ` Marin David Condic
2004-06-15 16:21 ` Warren W. Gay VE3WWG
2004-06-15 19:36 ` Frank J. Lhota
2004-06-15 19:51 ` Björn Persson
2004-06-16 13:44 ` Frank J. Lhota
2004-06-15 22:13 ` Hyman Rosen
2004-06-15 22:32 ` Björn Persson
2004-06-15 23:04 ` Hyman Rosen
2004-06-15 23:23 ` Brian May
2004-06-15 23:26 ` tmoran
2004-06-16 18:11 ` Ludovic Brenta
2004-06-15 23:33 ` Björn Persson
2004-06-15 23:18 ` Dale Stanbrough
2004-06-15 23:22 ` Hyman Rosen
2004-06-15 23:37 ` Dale Stanbrough
2004-06-15 23:59 ` Björn Persson
2004-06-16 13:38 ` Ada BIND was: Improving Ada's image - Was: 7E7 Flight Controls Larry Kilgallen
2004-06-09 10:52 ` Ada operating systems Peter C. Chapin
2004-06-09 12:07 ` Improving Ada's image - Was: 7E7 Flight Controls Electronics Georg Bauhaus
2004-06-11 7:05 ` Hyman Rosen
2004-06-11 15:07 ` Georg Bauhaus
2004-06-09 12:32 ` Marin David Condic
2004-06-15 20:34 ` Larry Kilgallen
2004-06-08 19:51 ` Wes Groleau
2004-06-08 22:26 ` Hyman Rosen
2004-06-09 4:39 ` I R T
2004-06-09 8:13 ` Dmitry A. Kazakov
2004-06-09 12:42 ` Warren W. Gay VE3WWG
2004-06-09 12:38 ` Warren W. Gay VE3WWG
2004-06-09 16:23 ` Robert I. Eachus
2004-06-09 16:38 ` Marius Amado Alves
2004-06-09 20:51 ` Robert I. Eachus
2004-06-10 12:43 ` Marin David Condic
2004-06-15 19:55 ` Larry Kilgallen
2004-06-09 23:45 ` Richard Riehle
2004-06-10 12:58 ` Marin David Condic
2004-06-11 18:03 ` Russ
2004-06-14 16:16 ` Warren W. Gay VE3WWG
2004-06-01 2:45 ` Hyman Rosen
2004-06-04 17:24 ` Improving Ada's image - Was: 7E7 Flight Controls Electronics (why not Universities?) Warren W. Gay VE3WWG
2004-06-04 18:46 ` Marius Amado Alves
2004-06-07 12:58 ` Warren W. Gay VE3WWG
2004-06-07 17:11 ` Ada in colleges and universities Peter C. Chapin
2004-06-07 17:29 ` Marius Amado Alves
2004-06-07 19:47 ` Peter C. Chapin
2004-06-07 18:39 ` Björn Persson
2004-06-07 18:55 ` Marius Amado Alves
2004-06-07 19:21 ` Jerome Hugues
2004-06-07 19:27 ` (see below)
2004-06-07 19:44 ` Marius Amado Alves
2004-06-08 1:14 ` Alexander E. Kopilovich
2004-06-07 22:06 ` Björn Persson
2004-06-07 22:17 ` (see below)
2004-06-08 9:30 ` Adrian Knoth
2004-06-08 17:12 ` Jeffrey Carter
2004-06-08 18:19 ` Adrian Knoth
2004-06-08 9:53 ` Jano
2004-06-09 8:55 ` Pascal Obry
2004-06-07 19:53 ` Peter C. Chapin
2004-06-07 21:54 ` Björn Persson
2004-06-09 3:52 ` I R T
2004-06-09 12:51 ` Björn Persson
2004-06-10 2:58 ` Wes Groleau
2004-06-07 22:03 ` Ludovic Brenta
2004-06-08 0:16 ` Jeffrey Carter
2004-06-08 5:12 ` Ludovic Brenta
2004-06-08 16:14 ` Warren W. Gay VE3WWG
2004-06-06 13:34 ` Improving Ada's image - Was: 7E7 Flight Controls Electronics (why not Universities?) Ralph W. Reid
2004-06-07 2:38 ` Robert I. Eachus
2004-05-30 18:47 ` Improving Ada's image - Was: 7E7 Flight Controls Electronics Richard Riehle
2004-05-31 12:57 ` Marin David Condic
2004-05-31 23:36 ` Berend de Boer
2004-06-01 0:41 ` tmoran
2004-06-01 11:04 ` Marin David Condic
2004-06-01 14:44 ` Wes Groleau
2004-06-01 18:43 ` Pascal Obry
2004-06-07 16:35 ` Warren W. Gay VE3WWG
2004-05-31 12:45 ` Marin David Condic
2004-05-31 20:55 ` Improving Ada's image Björn Persson
2004-06-01 0:41 ` Alexander E. Kopilovich
2004-06-01 11:23 ` Marin David Condic
2004-06-01 2:40 ` Improving Ada's image - Was: 7E7 Flight Controls Electronics Hyman Rosen
2004-06-01 21:14 ` Per Dalgas Jakobsen
2004-06-02 1:12 ` Ed Falis
2004-06-02 10:59 ` Stefan Nobis
2004-06-03 4:19 ` Jeffrey Carter
-- strict thread matches above, loose matches on Subject: below --
2004-05-31 9:22 Rod Chapman
2004-06-01 11:30 ` Georg Bauhaus
2004-06-18 14:43 abrandon
2004-06-18 17:49 ` Wes Groleau
replies disabled
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox