Secure Coding mailing list archives
Re: Programming languages used for security
From: Crispin Cowan <crispin () immunix com>
Date: Fri, 09 Jul 2004 23:16:26 +0100
David Crocker wrote: 1. Is it appropriate to look for a single "general purpose" programming language? Consider the following application areas: a) Application packages b) Operating systems, device drivers, network protocol stacks etc. c) Real-time embedded software The features you need for these applications are not the same. For example, garbage collection is very helpful for (a) but is not acceptable in (b) and (c). For (b) you may need to use some low-level tricks which you will not need for (a) and probably not for (c). I agree completely that one language does not fit all. But that does not completely obviate the question, just requires some scoping. 2. Do we need programming languages at all? Why not write precise high-level specifications and have the system generate the program, thereby saving time and eliminating coding error? [This is not yet feasible for operating systems, but it is feasible for many applications, including many classes of embedded applications]. The above is the art of programming language design. Programs written in high-level languages are *precisely* specifications that result in the system generating the program, thereby saving time and eliminating coding error. You will find exactly those arguments in the preface to the K&R C book. Crispin -- Crispin Cowan, Ph.D. http://immunix.com/~crispin/ CTO, Immunix http://immunix.com
Current thread:
- Programming languages used for security Wall, Kevin (Jul 09)
- Re: Programming languages used for security Fabien (Jul 09)
- Re: Programming languages used for security ljknews (Jul 09)
- Re: Programming languages used for security Crispin Cowan (Jul 09)
- RE: Programming languages used for security David Crocker (Jul 09)
- Re: Programming languages used for security Crispin Cowan (Jul 09)
- Re: Programming languages used for security Dana Epp (Jul 10)
- Re: Programming languages used for security Crispin Cowan (Jul 10)
- RE: Programming languages used for security David Crocker (Jul 10)
- Re: Programming languages used for security der Mouse (Jul 10)
- Re: Programming languages used for security Crispin Cowan (Jul 09)
- Re: Programming languages used for security der Mouse (Jul 10)
- <Possible follow-ups>
- RE: Programming languages used for security Wall, Kevin (Jul 10)
- Re: Programming languages used for security James Walden (Jul 10)
- RE: Programming languages used for security Wall, Kevin (Jul 10)