Ricardo Aráoz <[EMAIL PROTECTED]> writes: > In that case why don't we just 'certify to a higher level' the programs > and get done with this formal proofs? We should remember that the level > of security of a 'System' is the same as the level of security of it's > weakest component, so either we formally prove all those other very > important components (OS gets MUCH more use than the program (the > program uses it for almost every other action)) or get done with the > whole fuss.
This url has some info on the topic of certification etc.: http://www.dwheeler.com/essays/high-assurance-floss.html -- http://mail.python.org/mailman/listinfo/python-list
