I saw this in Facebook group and I would like to know if there is any truth in it.
SAFE Network currently also requires you to trust the developers. It’s not
provably secure although Rust is much more easy to secure than C++. I
have not done any static analysis or other tests but the chance for a
zero-day does exist even if it’s minimal. You also have the very strong
possibility that there could be ISPs colluding to target certain people
or that governments can make law enforcement nodes like thery do with
So if you ask me, I would say assume every
hardware electronic device may be backdoored by an intelligence agency
or several. Assume every piece of software which you run which has not
gone through the correct by construction formal verification process to
be a black box which anything could be going on.
Turing complete is not a good thing for security. Centralization of hardware
manufacturing and the lack of Trusted Foundries only makes it worse. You
have to secure the entire supply chain, avoid Turing complete, and
follow the correct by construction development paradigm.
C++ would have taken maybe millions of lines of code and would have still
been very buggy. Rust is a lot less buggy so the risk levels are
reduced. Formal verification and correct by construction reduces risk
levels even more. Fully functional dependently typed programming
languages decrease risks the most on the software side because then
everyone can know exactly what the software can do.
My opinion is SAFE Network will give you a magical sense of security and
will be able to evade law enforcement for a time, but that time will
eventually run out and the determining factor will be based on how much
law enforcement is willing to spend on countermeasures. If SAFE Network
is abused and seen as a tool of evil then law enforcement will easily
demonize the whole tool and then build countermeasures to it just as has
been done with Tor.