19 Aug
2006
19 Aug
'06
3:36 p.m.
Josh Dersch wrote:
You may be interested in the Singularity project (a
research project at
Microsoft, no less). It (gasp!) abstracts away pointers; the IL used
for the entire OS (a subset of the CLR), the OS interface, et. al. is
designed such that processes can be "proven" to be safe -- and all
process protection is done _without_ the use of any CPU hardware.
http://research.microsoft.com/os/singularity/
This can only be possible if applications are *interpreted*
AND the user is denied *any* means of accessing the underlying
hardware (either by accidental or *intentional* means).
It's like claiming "run Java/Inferno/etc. on your machine and you'll
never have to worry about security issues" (unless, of course,
someone boots the machine to a "non-Java" state!)