The CEO of Green Hills has posted some new content regarding Linux insecurity. He has a point (at least, for embedded applications) and the Linux community needs to address the basic issues he raises. For instance: why has Windows been certified to EAL4 while Linux remains at EAL2?
Before most Linux developers were born, Ken Thompson irrefutably proved that an open source process couldn't find clever subversions, no matter how many people of whatever competence looked at the source code...
"Many Eyes" - No Assurance Against Many Spies - Green Hills Software
No comments:
Post a Comment