[trustable-software] What's happening?
Agustin Benito Bethencourt
agustin.benito at codethink.co.uk
Fri Jun 23 08:56:21 UTC 2017
Hi,
On 21/06/17 18:42, Chris Lamb wrote:
> Dear all,
>
>>> Thankfully there is some traction via community projects. The Debian
>>> leader, Chris Lamb (in CC), is active in this respect.
>>
>> Ack. Would love to see even more traction. Without reproducible builds,
>> we have no way to be sure a system contains (only) what we think it
>> does.
>
> Indeed. Also difficult to ensure that academic software referenced in
> published papers is externally verifiable and remains so many years on.
>
> Moreover, as a reproducible build does not vary arbitrarily, it is surely
> essential in large-scale public infrastructure - I wouldn't want to push
> out any kind of update to a hydroelectric dam or nuclear reactor without
> knowing *exactly* what was changing at the binary level!
>
> (By "love to see even more traction" do you mean in general, or...?)
The Civil Infrastructure Platform, a Linux Foundation initiative, has
published a document (white-paper) that, based on the discussions here
that lead to the published "trustable software" definition, has included
the term "trusted software" on the document.
Link:
https://wiki.linuxfoundation.org/_media/civilinfrastructureplatform/whitepaper_short.pdf
(check page 3)
This past Wednesday, during my talk at the Autonomous Vehicle Software
Symposium 2017, I briefly described the "Trustable Software" definition
given by this forum and pointed to the website for further information.
At OSSJ in Tokyo I pointed to several people this mailing list, being
Shane one of them.
I believe the discussions in this forum are valuable and I am willing to
keep supporting your efforts.
Best Regards
--
Agustin Benito Bethencourt
Principal Consultant - FOSS at Codethink
agustin.benito at codethink.co.uk
More information about the trustable-software
mailing list