← Back to context

Comment by fsflover

2 days ago

Which other approach to security do you consider reliable? Through correctness? Through obscurity?

https://blog.invisiblethings.org/2008/09/02/three-approaches...

6 comments

fsflover

Reply
Joel_Mckay  2 days ago

Publicly documented encrypted mmu, as it is the only practical way to isolate contexts on parallel cores.

Or some exotic processor no one would ever sell successfully. =3

  • wmf  2 hours ago

    Intel SGX/TDX and AMD SEV-SNP implemented that (although it was hacked the other day) and some clouds offer it.

  • Rohansi  2 days ago

    What would an encrypted MMU do differently?

    • Joel_Mckay  2 days ago

      Mitigates undetectable bleeding/contamination of information between parallel processes, cores, and or rowhammer etc.

      Thus, writing a robust and secure OS may actually be possible by competent programmers in most compiled languages. Best of luck =3

      2 replies →