Secure Coding mailing list archives

Re: Anyone looked at security features of D programming language compared to Spark?

From: Crispin Cowan <crispin () immunix com>
Date: Mon, 26 Apr 2004 14:53:52 +0100


Jim & Mary Ronback wrote:

I am hard put to find an example of a language feature which makes a 
system more secure but less safe or vice versa, in any context. Can 
anyone else think of one?


Dynamic type checking (or any kind of run-time fail-stop checking) 
enhances security (attacks are halted) but degrades reliability 
(processes that might live with a harmlessly inconsistent state may be 
halted).


Now, that is in isolation, considering only the language impact on an 
individual process, in response to Jim/Mary's question. Of course you 
can compose fail-stop mechanisms with redundancy techniques to archive 
strong availability in the presence of weak individual process 
reliability. In fact, it is much easier to achieve high availability in 
the presence of fail-stop failure modes instead of Byzantine failure modes.


Crispin

--
Crispin Cowan, Ph.D.  http://immunix.com/~crispin/
CTO, Immunix          http://immunix.com
Immunix 7.3           http://www.immunix.com/shop/

Current thread:

Re: Anyone looked at security features of D programming language compared to Spark? Gary McGraw (Apr 22)
- Re: Anyone looked at security features of D programming language compared to Spark? Jim & Mary Ronback (Apr 23)
  - Re: Anyone looked at security features of D programming language compared to Spark? Crispin Cowan (Apr 26)
    - RE: Anyone looked at security features of D programming language compared to Spark? Michael Canty (Apr 26)
    - Re: Anyone looked at security features of D programming language compared to Spark? Blue Boar (Apr 26)
    - Re: Anyone looked at security features of D programming language compared to Spark? Crispin Cowan (Apr 26)