[Info-vax] Roadmap

Dave Froble davef at tsoft-inc.com
Thu Jan 3 15:44:48 EST 2019 

On 1/3/2019 3:11 PM, gezelter at rlgsc.com wrote:
> On Thursday, January 3, 2019 at 1:32:43 PM UTC-5, Simon Clubley wrote:
>> On 2019-01-03, gezelter at rlgsc.com <gezelter at rlgsc.com> wrote:
>>> On Wednesday, January 2, 2019 at 9:51:03 AM UTC-5, John Reagan wrote:
>>>> On Tuesday, January 1, 2019 at 8:26:51 PM UTC-5, Richard Maher wrote:
>>>>>
>>>>> And you added that new/optional parameter to math$random right?
>>>>
>>>> I'm not falling for that again...  The last time I suggested such a thing, I got schooled in PRNGs.
>>>>
>>>> Seriously, we've been talking about PRNGs, entropy pools, OpenSSL, etc.  Having access to the underlying x86 instructions (either as C builtins, new MATH$ entry points, enhanced MATH$ entry points, etc.) will be a part of that.
>>>
>>> John,
>>>
>>> My recommendation would be for an essentially "flat" port, with changes deferred to a later point.
>>>
>>
>> The problem with that is that while it can apply to much of VMS,
>> security is an ever changing goal and VMS needs various things
>> to be fixed as soon as possible.
>>
>> I would also hope VSI isn't exclusively using the Intel hardware
>> generator by default for security critical functionality.
>>
>> Simon.
>>
>> --
>> Simon Clubley, clubley at remove_me.eisner.decus.org-Earth.UFP
>> Microsoft: Bringing you 1980s technology to a 21st century world
>
> Simon,
>
> Just to be clear: My reference to "flat" was not a long-term recommendation, but a short-term tactic for the initial boot/EAK.
>
> Long-term, there is no shortage of things to be done. However, none of them should detract from the short-term goal of First Boot/EAK.
>
> - Bob Gezelter, http://www.rlgsc.com
>

There is also the concept of being exactly the same, for testing to see 
if anything was broke.

As for Simon's concerns, if the possibilities were port with no security 
enhancements, or, no port at all, it might be interesting to see his 
preference.  Me, I think the priority is the port, over anything else. 
But what do I know?


-- 
David Froble                       Tel: 724-529-0450
Dave Froble Enterprises, Inc.      E-Mail: davef at tsoft-inc.com
DFE Ultralights, Inc.
170 Grimplin Road
Vanderbilt, PA  15486

More information about the Info-vax mailing list