zlacker

[parent] [thread] 2 comments
1. smt88+(OP)[view] [source] 2015-10-28 02:52:53
I don't know if I understand how most of these things could be considered secure unless they've been heavily attacked already.

Are they all so much more secure by design that you consider them to be great projects?

My experience is heavily with server-side web languages, so I'm particularly skeptical of those. Even the most secure-seeming web languages have buggy, insecure implementations at first.

replies(1): >>kragen+o
2. kragen+o[view] [source] 2015-10-28 03:02:11
>>smt88+(OP)
Those projects are mostly research into how to make software and hardware less buggy; most of them are not themselves written with a threat model in mind.
replies(1): >>nickps+wo
◧◩
3. nickps+wo[view] [source] [discussion] 2015-10-28 13:01:40
>>kragen+o
Exactly. Most could be, though, if people put forth the effort. So I keep mentioning such work.

Note: This comment is mainly for others reading along. Something I do on forums. I know you already understand this point.

[go to top]