Post Ad0Ctz83hP31m9dVh2 by djm@cybervillains.com
 (DIR) More posts by djm@cybervillains.com
 (DIR) Post #Ad0Ctxkcp2i1VBfHWq by djm@cybervillains.com
       2023-12-20T09:27:35Z
       
       0 likes, 1 repeats
       
       The "robustness principle" is the most destructive concept in protocol design and implementation of all time. We should be embracing its inverse: strict, explicit state-machines with model-checked proofs
       
 (DIR) Post #Ad0Ctz83hP31m9dVh2 by djm@cybervillains.com
       2023-12-20T09:28:08Z
       
       0 likes, 0 repeats
       
       this post brought to you by the Terrapin attack
       
 (DIR) Post #Ad0Cu1D5xeGUEM0Yoy by djm@cybervillains.com
       2023-12-20T09:28:16Z
       
       0 likes, 0 repeats
       
       and gin
       
 (DIR) Post #Ad0CugmzN6L1BY7Ixc by hannesm@mastodon.social
       2023-12-20T10:42:10Z
       
       0 likes, 1 repeats
       
       @djm agreed & there's https://datatracker.ietf.org/doc/html/rfc9413 :)looking back, unfortunately formal methods work does not always pick up to ietf - e.g. our work on tcp/ip and the sockets api didn't get much resonance in the engineering community http://www.cl.cam.ac.uk/~pes20/Netsem/paper3.pdf