Secure Coding mailing list archives

Previous By Date Next
Previous By Thread Next

FW: What's the next tech problem to be solvedin softwaresecurity?

From: rcs at cert.org (Robert C. Seacord)
Date: Sun, 10 Jun 2007 09:16:42 -0400
ljknews,

Yes, it is virtually impossible to get a serious runtime error in an Ada
program.  For example:

http://www.youtube.com/watch?v=kYUrqdUyEpI

rCs



At 9:51 PM +0100 6/9/07, David Crocker wrote:

  

If instead we pay people to perform the more skilled tasks of establishing
requirements and specifying the systems to meet them, and use computers to
generate programs that meet the specifications, then such things as freedom from
buffer overflow come free of charge. By "freedom" here, I don't mean the sort of
freedom that comes in "safe" languages such as Ada and Java - in which the
buffer overflow raises an exception, probably requiring a restart of the
subsystem
    


In my experience with Ada 83, the potential for buffer overflow is detected
at compile time.  When I get an unexpected runtime exception, it is almost
always at the interface to another language.
Previous By Date Next
Previous By Thread Next

Current thread: