Secure Coding mailing list archives
re-writing college books [was: Re: A banner year for software bugs | Tech News on ZDNet]
From: michaelslists at gmail.com (mikeiscool)
Date: Sun, 5 Nov 2006 13:19:11 +1100
On 10/28/06, David Crocker <dcrocker at eschertech.com> wrote:
Crispin Cowan wrote:For me, the enemy in the room is C++. It gives you the safety of C with the performance of SmallTalk. There is no excuse at all to be writing anything in C++ yet vastly too many applications are written in C++ anyway. Instead of trying to coax developers to switch from C++ to something "weird" like SML, lets encourage them to switch to Java or C#, which are closer to their experience. << Unfortunately, there are at least two situations in which C++ is a more suitable alternative to Java and C#: - Where performance is critical. Run time of C# code (using the faster .NET 2.0 runtime) can be as much as double the run time of a C++ version of the same algorithm. Try telling a large company that it must double the size of its compute farms so you can switch to a "better" programming language!
Don't go there, sister. Come up with some reasonable tests before making a statement like that. "Assembly code can be as much as a million times faster then the run time of a C++ version of the same algorithm." Bit useless, isn't it? Lets not forget that writing faster/more optimised code in c++ will be more complex and hence allow room for more errors then letting the c#/java runtime optimiser do the dirty work for us.
However, I suspect that most security-critical programs do not fall into either of these categories,
What? Cryptography rings a bell ...
so C# or Java would indeed be a better choice than C++ for those programs. David Crocker, Escher Technologies Ltd. Consultancy, contracting and tools for dependable software development www.eschertech.com
-- mic
Current thread:
- re-writing college books - erm.. ahm..., (continued)
- re-writing college books - erm.. ahm... Leichter, Jerry (Nov 05)
- re-writing college books - erm.. ahm... Gadi Evron (Nov 05)
- re-writing college books - erm.. ahm... Wall, Kevin (Nov 06)
- re-writing college books - erm.. ahm... pete werner (Nov 06)
- re-writing college books - erm.. ahm... Paul Powenski (Nov 06)
- re-writing college books - erm.. ahm... Leichter, Jerry (Nov 06)
- re-writing college books - erm.. ahm... Gunnar Peterson (Oct 30)
- re-writing college books [was: Re: A banner year for software bugs | Tech News on ZDNet] David Crocker (Oct 28)
- re-writing college books [was: Re: A banner year for software bugs | Tech News on ZDNet] Crispin Cowan (Nov 02)
- re-writing college books [was: Re: A banner year for software bugs | Tech News on ZDNet] David Crocker (Nov 04)
- re-writing college books [was: Re: A banner year for software bugs | Tech News on ZDNet] mikeiscool (Nov 04)
- re-writing college books [was: Re: A banner year for software bugs | Tech News on ZDNet] David Crocker (Nov 05)
- re-writing college books [was: Re: A banner year for software bugs | Tech News on ZDNet] mikeiscool (Nov 05)
- Could I use Java or c#? [was: Re: re-writing college books] SZALAY Attila (Nov 05)
- Could I use Java or c#? [was: Re: re-writing college books] mikeiscool (Nov 06)
- Could I use Java or c#? [was: Re: re-writing college books] SZALAY Attila (Nov 08)
- Could I use Java or c#? [was: Re: re-writing college books] mikeiscool (Nov 08)
- Could I use Java or c#? [was: Re: re-writing college books] SZALAY Attila (Nov 09)
- Could I use Java or c#? [was: Re: re-writing college books] ljknews (Nov 09)
- Could I use Java or c#? [was: Re: re-writing college books] SZALAY Attila (Nov 09)
- Could I use Java or c#? [was: Re: re-writing college books] ljknews (Nov 09)