D vs. C#
Reiner Pope
some at address.com
Tue Oct 23 00:11:13 PDT 2007
Vladimir Panteleev wrote:
>>> This allows VM languages to be safely
>>> embedded in places such as web pages (Flash for ActionScript, applets
>>> for Java, Silverlight for .NET).
>> It is not necessary to have a VM to achieve this. If you design a
>> language that does not have arbitrary pointers, and you control the code
>> generation, you can sandbox it in software every bit as effectively.
>> This is why, for example, the Java JITs don't compromise their security
>> model.
>
> This requires that the code is given at a level high enough where this is enforceable - that is, either at source or bytecode/AST level.
>
However, work has been done on Proof Carrying Code and Typed Assembly
Language so that you can distribute code as assembly, and still have the
security policy enforceable. I don't know how developed this is, though.
-- Reiner
More information about the Digitalmars-d
mailing list