|
4 posts total
 I have #Rust, I don't need #CHERI! I have CHERI, I don't need Rust! No, you need both, they solve different problems and Rust + CHERI solves problems that neither Rust nor CHERI solve alone. https://cheriot.org/cheri/myths/2024/08/28/cheri-myths-safe-languages.html If cancel culture is so powerful, can we just cancel everything for the next 6-12 months and give everyone a bit of time to recover?   @david_chisnall I would not mind if taxes were canceled- that would sit very well with me. And the governments around the world too.
Show previous comments
@david_chisnall I'm a supposedly decent German writer (or that's what ppl keep telling me) and I think ChatGPT output sucks.   I agree with this take on the AI Hype in that, pretty obviously what we have in general AI applications is a regression to the mean. The real shame is that there are quite a few fields in science where machine learning is really extremely useful in finding patterns in data that might be too subtle for ordinary perception. The hype covers up (for people in the general public) this actual advance. It’s really not fair to blame CrowdStrike for the outages today. The blame lies with the people in a position to make procurement decisions, who saw a product that added a load of additional code that runs in Ring 0 and though ‘yes, this will make us more secure, I will mandate this must be deployed across the entire company’. A large part of the blame lies with the people who created auditing frameworks that would lead people to believe that this was necessary for compliance. |
Gregory's Server
@david_chisnall As usual, fantastic blog :)
@david_chisnall how quickly can you emulate CHERI on x86-64? (Does qemu support it for example?) If you compile your C code, or language bindings/runtime to a CHERI architecture could that act as a better valgrind/ASAN?
Probably not what you had in mind when designing the hardware, but might be a useful intermediate step until CHERI hardware is widely available.