Mirandify OpenSource #214
Comments
That doesn't seem fail-safe. Am I confused? |
|
Trying to remember my thoughts here. I don't understand why, in the original E auditor proposal, it isn't just automatically the case that every auditable object is But that's not quite the whole story, because there's computability arguments that we can't tell the difference between plain numbers and cryptographically-relevant numbers. So keys will always need some sort of human-readable annotations and guardrails which prevent them from being too easily misused, even though we know that they will promptly be misused. We already do this in Typhon's runtime bindings for libsodium; when we generate keypairs, we wrap them to prevent the bytes being shown too easily, and there's a switch for logging every time a key is revealed. This is all aside from native objects, which simply might not have a portable or non-circular representation in Kernel-Monte. |
E's original auditor proposal suggests an auditor,
OpenSource, which allows objects to open their AST for inspection on an opt-in basis. But what if we made it opt-out instead?Let's have a Miranda method which exposes the AST of the current object, or
nullif not interested in sharing source. Reasons for opting out include being a native object, being a powerful object, being a puzzle between agents which relies on hidden source (think guess-the-number puzzles), etc.The text was updated successfully, but these errors were encountered: