Thanks for mentioning this. It is to see references to things like KataOS that I watch this list. I have been working on designs to support secure 'data packaging' and a live web of trust that can take the authority of things like credit card companies to prove that entities are what they say they are without saying who they are or linking them to activities. There needs to be some way to prove security all the way down to the silicon. For this reason, I was targeting RISC-V. so we can microscopically inspect a final system down to the silicon to ensure that there are no built-in vulnerabilities. All this work is just crazily labor intensive. but I think I have been choosing wisely so that I can use the work of others. It is heartening to see Google take this up. I would like to eventually be able to build on sel4, so have been choosing tools for which there are sound sources. That means that if 'sparrow' gets to the point it can support what I need on bare metal, my stuff will port over with a minimum of work. As people here know, this stuff can take an exceedingly long time, because there is more than one devil in the details.
On Tue, Oct 18, 2022 at 3:06 PM James Hillman firstname.lastname@example.org wrote:
I was interested to see the Google news re. KataOS which I suspect confirms that my sort of requirement / entry point is someway out.
I was also reading about ARM Morello / CHERI work. Although I appreciate this is taking a different, perhaps flawed, path of some new hardware memory protection.
Appreciate any feedback you can humour me with. _______________________________________________ Devel mailing list -- email@example.com To unsubscribe send an email to firstname.lastname@example.org