Lists Home |
Date Index |
On Friday 03 October 2003 15:06, Rich Salz wrote:
> > Are you saying it doesn't make sense to ask why ASN.1 has been
> > vulnerable to long-lived bugs? We are not talking about just one
> > bug in just one implementation.
> In every case so far, it's been untested code paths. As others have
> said, that's not ASN1/[BDPX]ER's fault.
What if the design of ASN1/[BDPX]ER yields many more code paths
than other designs? Is that a design flaw?
The union of REST and capability-based security: