ietf
[Top] [All Lists]

Re: Number of CAs

2013-11-18 04:48:12
Randy Bush wrote:

http://www.dwheeler.com/trusting-trust/

You can make application programs written in high level language
on your computers *completely* secure if you can correctly perform
the following:

        1) you manufacture CPU and related key chips and intra and
        inter board wiring.

        2) you code or check code, and hand assemble IPL

        3) you code or check code, and hand assemble OS

        4) you code or check code, and hand assemble an assembler

        5) you code or check code, and hand compile an compiler
        into assembly language.

        6) you code or check code, and use secure compiler for
        the applications.

Thus, it is obvious that, though it is not perfect, open source
helps a lot as it enables a lot of people check code.

Though I do have some experiences on some of 1), all of 2), 3) and
the first halves of 4), 5) and 6), it is very hard to do the rest.

However, open source still helps a lot.

                                                        Masataka Ohta