@marshray (FWIW I think @matthew_d_green makes that distinction in his research interests http://spar.isi.jhu.edu/~mgreen/ )
-
-
Replying to @maradydd
@maradydd@matthew_d_green I like the term 'cryptographic engineer' and sometimes describe myself as one. But it's like 'software engineer'3 replies 0 retweets 0 likes -
Replying to @marshray5 replies 0 retweets 0 likes
-
Replying to @matthew_d_green
@matthew_d_green@marshray@maradydd Think of another software field where you can’t build reliably without keeping up with literature.3 replies 0 retweets 1 like -
Replying to @matthew_d_green2 replies 0 retweets 0 likes
-
Replying to @matthew_d_green
@matthew_d_green@marshray@maradydd In practice it suffices to know that e.g. use of uninitialized variable is game-over; a K&R idea.2 replies 0 retweets 0 likes -
Replying to @tqbf
@tqbf@matthew_d_green@marshray@maradydd And that you can inject code through format strings, integers overflow, use after free, etc.1 reply 0 retweets 0 likes -
Replying to @DefuseSec
@DefuseSec@matthew_d_green@marshray@maradydd Format string misuse is I think the only example in there that isn’t part of K&R.2 replies 0 retweets 0 likes -
Replying to @tqbf
@tqbf@matthew_d_green@marshray@maradydd And the fact that gets() exists at all.1 reply 0 retweets 0 likes
@DefuseSec @tqbf @matthew_d_green @marshray @maradydd gets() doesn't exist any more in C11.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.