On Wed, Feb 25, 2004 at 10:02:20PM +0000, Timwi wrote:
Tomasz Wegrzanowski wrote:
No need to use insecure C/C++.
I have made a prototype in (ocaml)lex/(ocaml)yacc
(
http://meta.wikipedia.org/wiki/Wikipedia_lexer).
It's one pass, extra fast, 100% secure, XHTML-clean, and more DWIM than
current one.
The downside - it's not finished.
I had to chuckle at your claim of something being "100% secure".
When talking about string parsing, it's usual to use "security" as a synonym
of
"memory security". Ocaml is 100% memory secure. How memory secure is C we all
know.
And more general absolute security is possible. In fact it's quite easy -
you just have to formalize semantics of the machine you'll be using to run
the program, write down the security properties, and prove that the program
satisfies these properties. It may require a couple orders of magnitude more
work than coding, but it's not a laughable matter.