Originally posted by Luke_Wolf
View Post
Announcement
Collapse
No announcement yet.
seL4 Micro-Kernel Working Towards A General-Purpose, Multi-Server OS
Collapse
X
-
- Likes 5
-
Originally posted by pal666 View Postwill it save you from browser vulnerability? will you formally verify your browser?
- Likes 2
Leave a comment:
-
Originally posted by Luke_Wolf View PostHere let me translate that for you:
Doesn't sound so impressive now does it?
While TDD is something we should all strive for, touting it as your main selling point... just isn't that impressive unless you're running a DOD contract writing software to run aircraft engines or something. As others are being quick to point out it doesn't mean jack shit for typical server or desktop usage scenarios.
Something that you get with proofs that you do not get with tests, is a complete picture of what the code could do (assuming the processor is functioning as designed, and your model of it is accurate), not just the subset of what it should/might do that you think of when you're writing tests.
- Likes 4
Leave a comment:
-
Originally posted by pabloski View PostMinix has been used as a desktop OS by hobbyists. It is used in the Intel ME. It has some nice features ( like dead servers restart ). Imho Minix is better positioned to go forward. The big problem is that the community ( especially the opensource one ) sees microkernels as slow. It is a big misconception, but very hard to die.Last edited by microcode; 07 February 2021, 03:31 AM.
- Likes 1
Leave a comment:
-
Originally posted by brouhaha View Post
The advantage of seL4 over other microkernels is that seL4 is formally verified. It has been mathematically proven to meet its specification, including enforcement of security properties. The proof is done both at the C code level and at the object code (compiler output) level. There is no other real-world kernel which has been formally verified.
The advantage of seL4 over other microkernels is that seL4 used Test Driven Development to have 100% code coverage for the kernel itself.
While TDD is something we should all strive for, touting it as your main selling point... just isn't that impressive unless you're running a DOD contract writing software to run aircraft engines or something. As others are being quick to point out it doesn't mean jack shit for typical server or desktop usage scenarios.
- Likes 3
Leave a comment:
-
Originally posted by waxhead View Post
Yeah I looked at (part of) the presentation. Skipped most of it since that pdf was a bit heavy on my pdf reader/system. Personally I could not care less if it was mathematically proven - is it proven in practice?! Another thing, as others have already mentioned - what good is a safe kernel when you got vulnerable software running on top of it - or more concerning even vulnerable hardware? does seL4 have mitigations for all those pesky CPU bugs found in recent years? spectre/meltdown/etc ?! or worst of the worst - anything resembling the intel management engine?
P.S. In future I guess multi-user systems such as hypervisors and cloud backends will all implement something similar to what web browsers do lately: no cache sharing across domain.Last edited by billyswong; 07 February 2021, 01:59 AM.
- Likes 2
Leave a comment:
-
Originally posted by brouhaha View Post
The advantage of seL4 over other microkernels is that seL4 is formally verified. It has been mathematically proven to meet its specification, including enforcement of security properties. The proof is done both at the C code level and at the object code (compiler output) level. There is no other real-world kernel which has been formally verified.
- Likes 2
Leave a comment:
-
Originally posted by brouhaha View Post
The advantage of seL4 over other microkernels is that seL4 is formally verified. It has been mathematically proven to meet its specification, including enforcement of security properties. The proof is done both at the C code level and at the object code (compiler output) level. There is no other real-world kernel which has been formally verified.
- Likes 2
Leave a comment:
Leave a comment: