Re: [BLACKBOX] Secure Software

From: [at]} <Anes>
Date: Tue, 15 Jan 2008 19:22:45 -0800

----boundary-LibPST-iamunique-89980250_-_-
Content-type: text/plain


I enjoyed it too. However, as far as I like to see CP beats those other
 languages I must admit that the report was biased toward it. There are
 other features that improve security of programming code that CP lacks
 and that some other languages may have.

Some of them are:

1. System codes and other potentially unsafe code must be isolated in
 explicitly declared programming sections (Modula-3 UNSAFE MODULE and C#
 unsafe statement)
2. Interface types (well, POINTER TO ABSTRACT RECORD is close to that
 but not exactly that, C/C++ lacks them but Java and C# have them)
3. Generic types (C# 2.0 and Java 1.6 have them)
4. Constrains (preconditions, postconditions, invariants - none of the languages in the table have them but Eiffel, Spec# , and some others do)
5. Structured exception handling (could be abused but if used properly can also increase security - Java and C# have them)

This is by no mean a critique of CP. I do like the language. I did like the report. I'm just saying it was biased.

Anes


----- Original Message ----
From: Werner Braun <wb{([at]})nowhere.xy
To: BLACKBOX{([at]})nowhere.xy
Sent: Thursday, January 10, 2008 1:49:16 PM
Subject: Re: [BLACKBOX] Secure Software


Hello Markus,

> I hope you will enjoy the brand new issue of the ENISA Quarterly on
 secure
> software:

i enjoyed it very much :-)
The art of simplicity is known be too few people and it is good to se
 someone
alerting the rest of the world from time to time.

-- 
mit freundlichen Grüssen
Werner Braun
Mobil +49 (0)178 145 8768 * Festnetz +49 (0)4344 81900-2
O³ Software GmbH & Co. KG * Höhndorfer Tor 2b * D-24217 Schönberg *
 Germany
Sitz der Gesellschaft Schönberg * HR Amtsgericht Kiel HRA 1802 PL
Persönlich haftende Gesellschafterin O³ Software GmbH * HR
 Amtsgericht Kiel 
HRB 2029 PL * Geschäftsführer Werner Braun
----
To unsubscribe, send a message with body "SIGNOFF BLACKBOX" to
 LISTSERV{([at]})nowhere.xy      ____________________________________________________________________________________
Looking for last minute shopping deals?  
Find them fast with Yahoo! Search.  http://tools.search.yahoo.com/newsearch/category.php?category=shopping
----
To unsubscribe, send a message with body "SIGNOFF BLACKBOX" to LISTSERV{([at]})nowhere.xy----boundary-LibPST-iamunique-89980250_-_-
Content-type: application/rtf
Content-transfer-encoding: base64
Content-Disposition: attachment; filename="rtf-body.rtf"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----boundary-LibPST-iamunique-89980250_-_---

Received on Wed Jan 16 2008 - 04:22:45 UTC