Slashdot Mirror

← Back to Stories (view on slashdot.org)

New Programming Language Weaves Security Into Code

Posted by Soulskill on from the you-can't-goto-there-from-here dept.

Ponca City writes "Until now, computer security has been reactive. 'Our defenses improve only after they have been successfully penetrated,' says security expert Fred Schneider. But now Dr. Dobb's reports that researchers at Cornell are developing a programming platform called 'Fabric,' an extension to the Java language that builds security into a program as it is written. Fabric is designed to create secure systems for distributed computing, where many interconnected nodes — not all of them necessarily trustworthy — are involved, as in systems that move money around or maintain medical records. Everything in Fabric is an 'object' labeled with a set of policies on how and by whom data can be accessed and what operations can be performed on it. Even blocks of program code have built-in policies about when and where they can be run. The compiler enforces the security policies and will not allow the programmer to write insecure code (PDF). The initial release of Fabric is now available at the Cornell website."

11 of 216 comments (clear)

  1. beat this by heptapod · · Score: 4, Funny

    10 intpray "ellohay orldway"
    20 otogay 10

    For extra encryption use rot-13.

    1. Re:beat this by timboc007 · · Score: 2, Funny

      For extra encryption use rot-13.

      And for extra-extra encryption, use it twice!

    2. Re:beat this by Tablizer · · Score: 2, Funny

      YODASIC:

      "World, hello" 10 prints
      to 10 go, line 20 tells

      --
      Table-ized A.I.
  2. Fred Schnieder... by Anonymous Coward · · Score: 1, Funny

    "Until now, computer security has been reactive. Our defenses improve only after they have been successfully penetrated,"

    After reading the dude's name above, did anyone else hear this as a B52's song?

    Un-til NOW - computer security has been re - ACTive!...

    Tell it Fred!

  3. Re:Tall statement by Raenex · · Score: 4, Funny

    Because trying to force everybody to use Ada worked so well...

  4. Re:Why isn't this code working? by Anonymous Coward · · Score: 4, Funny

    I have a similar piece of code, give me the number and I'll check it against mine.

  5. Re:Instead of a new language... by shutdown+-p+now · · Score: 4, Funny

    Ada if it compiled successfully, the program often ran.

    Well, that's not such an impressive achievement, given that Perl would often happily run something that you wouldn't ever think could compile.

    The problem is to make sure that, when it runs, it does what the person who wrote the code intended it to do...

  6. Re:Tall statement by Sulphur · · Score: 4, Funny

    Give me TP for my security hole!

    Turbo Pascal?

  7. Re:Tall statement by RichardJenkins · · Score: 3, Funny

    I'll take my cars good and fast, and my women fast and cheap, thanks.

  8. A secure language by ignavus · · Score: 4, Funny

    "Hello, wo..."

    "ACCESS DENIED - world does not accept greetings from unknown source."

    --
    I am anarch of all I survey.
  9. Re:Instead of a new language... by Anonymous Coward · · Score: 1, Funny

    Name a major well know corporate system that runs Ada and has been breached.

    See! Argument won ;^)