Thanks for mentioning this. It is to see references to things like
KataOS that I watch this list.
I have been working on designs to support secure 'data packaging' and
a live web of trust that can take the authority of things like credit
card companies to prove that entities are what they say they are
without saying who they are or linking them to activities.
There needs to be some way to prove security all the way down to the
silicon. For this reason, I was targeting RISC-V. so we can
microscopically inspect a final system down to the silicon to ensure
that there are no built-in vulnerabilities.
All this work is just crazily labor intensive. but I think I have been
choosing wisely so that I can use the work of others. It is heartening
to see Google take this up. I would like to eventually be able to
build on sel4, so have been choosing tools for which there are sound
sources. That means that if 'sparrow' gets to the point it can support
what I need on bare metal, my stuff will port over with a minimum of
work.
As people here know, this stuff can take an exceedingly long time,
because there is more than one devil in the details.
On Tue, Oct 18, 2022 at 3:06 PM James Hillman
I was interested to see the Google news re. KataOS which I suspect confirms that my sort of requirement / entry point is someway out.
I was also reading about ARM Morello / CHERI work. Although I appreciate this is taking a different, perhaps flawed, path of some new hardware memory protection.
Appreciate any feedback you can humour me with. _______________________________________________ Devel mailing list -- devel@sel4.systems To unsubscribe send an email to devel-leave@sel4.systems
-- Bob Trower --- From Gmail webmail account. ---