blob: e4cd7ab3d1bbc3fe4df299f57a3fe37ae90be5a6 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
|
= Issues of an Assured Tool-Chain =
We do not have any assurance that our basic tools are not compromised.
* Compilers
* Operating Systems
* Hardware Platforms
* Verilog and Other Tools to Produce Chips
At the base, is the compiler. The fear was first formally expressed in
Ken Thompson's 1984 Turing Award Lecture
[http://www.ece.cmu.edu/~ganger/712.fall02/papers/p761-thompson.pdf Reflections on Trusting Trust].
David A. Wheeler's PhD thesis, [http://www.dwheeler.com/trusting-trust/ Fully Countering Trusting Trust through Diverse Double-Compiling]
outlines how we might deal with the compiler trust conundrum.
|
