review of Projects/replay_cache_collision_avoidance, ending Jan. 12

Sam Hartman hartmans at MIT.EDU
Mon Dec 29 12:31:52 EST 2008

>>>>> "Greg" == Greg Hudson <ghudson at MIT.EDU> writes:

    Greg> On Mon, 2008-12-29 at 08:02 -0500, Tom Yu wrote:
    >> What proportion of false positives is acceptable in a
    >> mixed-code deployment?

    Greg> I think mixed-code deployments are going to be rare.  It's
    Greg> good that we're going to effort to prevent things from
    Greg> breaking in such deployments, but I don't think we need to
    Greg> bend over backwards to ensure that we still get a reduction
    Greg> in false positives in such environments.

Greg, here are things that I think will make mixed-code reasonably common.
* Using the native Java interface  along side an OS library
* different 64-bit and 32-bit libraries
* Using Heimdal and MIT code on the same system

I think the standard we want is to try and avoid increasing the false
positive rate over what it is today.

More information about the krbdev mailing list