[14598] in cryptography@c2.net mail archive
Trusting the Tools - was Re: Open Source ...
daemon@ATHENA.MIT.EDU (Bill Frantz)
Sat Oct 11 09:40:38 2003
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
In-Reply-To:
<Pine.LNX.4.44L0.0310071107300.32493-100000@smtp.datapower.com>
Date: Thu, 9 Oct 2003 19:45:01 -0700
To: Rich Salz <rsalz@datapower.com>
From: Bill Frantz <frantz@pwpconsult.com>
Cc: "cryptography@metzdowd.com" <cryptography@metzdowd.com>
At 8:18 AM -0700 10/7/03, Rich Salz wrote:
>Are you validating the toolchain? (See Ken Thompson's
>Turing Aware lecture on trusting trust).
With KeyKOS, we used the argument that since the assembler we were using
was written and distributed before we designed KeyKOS, it was not feasible
to include code to subvert KeyKOS. How do people feel about this form of
argument?
Cheers - Bill
-------------------------------------------------------------------------
Bill Frantz | "There's nothing so clear as a | Periwinkle
(408)356-8506 | vague idea you haven't written | 16345 Englewood Ave
www.pwpconsult.com | down yet." -- Dean Tribble | Los Gatos, CA 95032
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
