From 71487660812754e5f26f26595b6c3d456f9f6db8 Mon Sep 17 00:00:00 2001
From: Rob Austein <sra@hactrn.net>
Date: Fri, 8 Oct 2021 00:30:08 -0400
Subject: Get rid of conversion stuff, just build content -> website

---
 content/AssuredTooChain.md | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)
 create mode 100644 content/AssuredTooChain.md

(limited to 'content/AssuredTooChain.md')

diff --git a/content/AssuredTooChain.md b/content/AssuredTooChain.md
new file mode 100644
index 0000000..f3d6f25
--- /dev/null
+++ b/content/AssuredTooChain.md
@@ -0,0 +1,20 @@
+Title: AssuredTooChain
+Author: trac
+Date: 2016-12-15 22:44
+
+# Issues of an Assured Tool-Chain
+
+We do not have any assurance that our basic tools are not compromised.
+
+* Compilers
+* Operating Systems
+* Hardware Platforms
+* Verilog and Other Tools to Produce Chips
+
+
+At the base, is the compiler.  The fear was first formally expressed in
+Ken Thompson's 1984 Turing Award Lecture
+[Reflections on Trusting Trust](http://www.ece.cmu.edu/~ganger/712.fall02/papers/p761-thompson.pdf).
+
+David A. Wheeler's PhD thesis, [Fully Countering Trusting Trust through Diverse Double-Compiling](http://www.dwheeler.com/trusting-trust/)
+outlines how we might deal with the compiler trust conundrum.
-- 
cgit v1.2.3