Comment by onjectic

4 months ago

> Unix security is fundamentally good

L. Ron Hubbard is fundamentally good!

I kid, but seriously, good how? Because it ensures cybersecurity engineers will always have a job?

seL4 is not the final answer, but something close to it absolutely will be. Capability-based security is an irreducible concept at a mathematical level, meaning you can’t do better than it, at best you can match it, and its certainly not matched by anything else we’ve discovered in this space.

1 comment

onjectic

Reply
stinkbeetle  4 months ago

> good how?

Good because it is simple both in terms of understanding it and implementing it, and sufficient in a lot of cases.

> seL4 is not the final answer, but something close to it absolutely will be. Capability-based security is an irreducible concept at a mathematical level, meaning you can’t do better than it, at best you can match it, and its certainly not matched by anything else we’ve discovered in this space.

Security is not pure math though, it's systems and people and systems of people.