[OLPC Security] bitfrost - formal analysis & implementation
Frank Ch. Eigler
fche at redhat.com
Sun Feb 18 08:57:03 EST 2007
Ivan Krsti=A7 <krstic at solarsail.hcs.harvard.edu> writes:
> > I may have just missed this in the specs, but how
> > many implementation aspects have been nailed down?
>=20
> Every item that made it into the Bitfrost spec did so only after I knew
> (in pretty substantial detail) how we're going to be implementing it [...]
> The current schedule is for there to be another open spec in late March
> that fully explains the implementation aspects.
OK. It's just that, without an indication of what layers of the
system would implement which portions of this security spec, it is
really hard to bite down and analyze it for vulnerabilities.
- FChE
More information about the Security
mailing list