On Wed, May 28, 2014 at 3:24 AM, Michael Rogers
wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
> On 28/05/14 10:54, Mansour Moufid wrote:
>> On Fri, 2014-04-25 at 09:28 -0700, Tony Arcieri wrote:
>>
>>> There's an entire class of memory safety bugs which are possible
>>> in C but not
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On 28/05/14 10:54, Mansour Moufid wrote:
> On Fri, 2014-04-25 at 09:28 -0700, Tony Arcieri wrote:
>
>> There's an entire class of memory safety bugs which are possible
>> in C but not possible in Rust. These also happen to be the class
>> of bugs th
On Fri, 2014-04-25 at 09:28 -0700, Tony Arcieri wrote:
> There's an entire class of memory safety bugs which are possible in C but
> not possible in Rust. These also happen to be the class of bugs that lead
> to Heartbleed-like secret leakage or remote code execution vulnerabilities.
It seems we'
On Thu, May 15, 2014 at 1:26 PM, Phillip Hallam-Baker wrote:
> JSON is a lot more than 10% better than ASN.1 or XML because both of the
> latter are bjorked. XML prefixes are insane
>
And TLS isn't? ;)
--
Tony Arcieri
___
cryptography mailing list
cry
On Tue, May 13, 2014 at 4:23 PM, Phillip Hallam-Baker wrote:
> In general any proposal of the form 'lets replace X with something 10%
> 'better'' is a losing proposition. Particularly when we are talking
> about systems where network effects dominate such as protocols, APIs
> and keyboard layouts[
On Friday, April 25, 2014, Marcus Brinkmann <
marcus.brinkm...@ruhr-uni-bochum.de> wrote:
> There are also whole classes of bugs in memory-safe languages that can't
> occur in C, for example anything related to garbage collection.
>
Rust doesn't have a garbage collector. It uses region typing so
On 04/25/2014 06:28 PM, Tony Arcieri wrote:
On Fri, Apr 25, 2014 at 1:42 AM, Peter Gutmann
mailto:pgut...@cs.auckland.ac.nz>> wrote:
As with "let's replace C with My Pet Programming Language", you can
write crap in any language you want. The problem isn't the language
There's an entir
On Fri, Apr 25, 2014 at 1:42 AM, Peter Gutmann wrote:
> As with "let's replace C with My Pet Programming Language", you can
> write crap in any language you want. The problem isn't the language
There's an entire class of memory safety bugs which are possible in C but
not possible in Rust. These
On 15/04/2014 21:07 pm, d...@deadhat.com wrote:
>> http://clearcryptocode.org/tls/
>>
>> Probably not going to happen, but it's nice to dream...
>>
>
> It is one of my long term, implausible goals to replace TLS with a
> collection of independent app to app function-targeted security protocols
> t
Tony Arcieri writes:
>http://clearcryptocode.org/tls/
>
>Probably not going to happen, but it's nice to dream...
And it is a dream. This is another one of the "let's replace TLS with My Pet
Secure Protocol and then we'll be safe", ignoring the fact that an
implementation of MPSP can and will be
http://clearcryptocode.org/tls/
Probably not going to happen, but it's nice to dream...
--
Tony Arcieri
___
cryptography mailing list
cryptography@randombit.net
http://lists.randombit.net/mailman/listinfo/cryptography
> http://clearcryptocode.org/tls/
>
> Probably not going to happen, but it's nice to dream...
>
It is one of my long term, implausible goals to replace TLS with a
collection of independent app to app function-targeted security protocols
that are individually simple enough to understand and impleme
12 matches
Mail list logo
