Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Tue, 07 Oct 2014 22:41:03 -0400 (EDT)
From: "David A. Wheeler" <dwheeler@...eeler.com>
To: "oss-security" <oss-security@...ts.openwall.com>
Subject: Re: Separating code and data

On Tue, 7 Oct 2014 16:40:22 +0000, "Mehaffey, John" <John_Mehaffey@...tor.com> wrote:
> I think that separating code and data belongs on David's list of "Most Important
> Software Innovations" (www.dwheeler.com/innovation/innovation.html), although
> arguably the "Separating Text Content from Format" innovation is an example 
> of the class.

Ah!  Thanks for remembering my page!!  

It's certainly true that there are real security advantages to separating code and data.  This topic brings up the old Harvard architecture vs. Von Neumann architecture discussion.  However, I think that the idea of having separate code and data streams is actually much older than digital computers.  The Jacquard loom separated code and data, and that dates to 1801.  The innovation was actually probably the other way, Von Neumann's allowing their *combination* ("Baby" is usually considered the first working example).

--- David A. Wheeler

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ