Date: Fri, 24 Jul 1998 11:14:02 +0200 From: Eivind Eklund <eivind@yes.no> To: Brett Glass <brett@lariat.org>, Andrew Kenneth Milton <akm@zeus.theinternet.com.au> Cc: security@FreeBSD.ORG Subject: Re: Translation to a safer language (Was: Projects to improve security) Message-ID: <19980724111402.00430@follo.net> In-Reply-To: <199807221459.IAA04129@lariat.lariat.org>; from Brett Glass on Wed, Jul 22, 1998 at 08:59:53AM -0600 References: <199807220250.UAA23367@lariat.lariat.org> <199807221438.OAA08927@zeus.theinternet.com.au> <199807221459.IAA04129@lariat.lariat.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Jul 22, 1998 at 08:59:53AM -0600, Brett Glass wrote: > At 02:38 PM 7/22/98 +0000, Andrew Kenneth Milton wrote: > > >Anything with a cast operator is out then... > > > >That nails, C++, Modula*, Java, C. > > I disagree. Casting used in certain limited ways is necessary, > as are variant records. However, mechanisms must be in place > to use it safelly. Casting should not be necessary - there came new typesystems last year that let you describe complex cases (this is an integer, real, or JPEG picture, but not a generic picture) and do compile-time verification on them. The typesystems are (supposedly) generic enough to be useful for the way Lisp is typically used, and still simple enough that they can be mechanically verified. Now, if I'd only remembered their name... Eivind. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19980724111402.00430>