It also solved the buffer overflow problem, and a number of others.
*sigh*
Matt
On Jan 7, 2010, at 8:15 PM, Peter G. Neumann wrote:
... and of course Multics solved the Y2K problem in 1965,
deferring the overflow for many additional decades.
___
Ben,
Let's just hope that the code isn't compiled with -O3 or similar,
creating an unintended bug. :)
http://isc.sans.org/diary.html?storyid=6820
Brings back memories -- the first day on the job as a summer intern I
had to track down a bug in a UNIX device driver. Turned out the
optimizer
Ben,
First, security in the software development concept is at least an
intermediate concept, if not advanced. Riffing on Brad's comments, it
seems irrational to think that you can jump straight from structural
basics with which many students struggle (OO anybody?) directly to
concepts that
Another lurker revealing himself ... my name is Matt Bishop, and I
lurk at the University of California at Davis where I teach and do
research in lots of areas of computer security, including (surprise!)
what is traditionally called secure programming and secure software
development
As an academic who does teach this stuff whenever they let me in a
classroom ...
I'll address your third point. I am ALL FOR teaching software
security at the university level (and have been actively working
with universities for over a decade). I just don't think it is
realistic to