Browse thread
[Caml-list] Does Marshal handle malicious data?
-
Charles Martin
- Brian Rogoff
-
Xavier Leroy
- Brian Rogoff
[
Home
]
[ Index:
by date
|
by threads
]
[ Message by date: previous | next ] [ Message in thread: previous | next ] [ Thread: previous | next ]
[ Message by date: previous | next ] [ Message in thread: previous | next ] [ Thread: previous | next ]
| Date: | -- (:) |
| From: | Brian Rogoff <bpr@b...> |
| Subject: | Re: [Caml-list] Does Marshal handle malicious data? |
On Wed, 6 Mar 2002, Xavier Leroy wrote: > Gracefully recovering from bad data could be implemented, but at > significant run-time cost. An alternative is to use message > authentication codes and the like to guarantee the integrity of the > data. I've thought that it may be useful to have a Sys.version or similar to use in such authentication codes, since I do exactly what you mention and ensuring integrity across compiler versions is an issue. Opinions? -- Brian ------------------- To unsubscribe, mail caml-list-request@inria.fr Archives: http://caml.inria.fr Bug reports: http://caml.inria.fr/bin/caml-bugs FAQ: http://caml.inria.fr/FAQ/ Beginner's list: http://groups.yahoo.com/group/ocaml_beginners