Memory safety bugs in baseband processors are terrifying because they're sitting right on the cellular interface with system-level privileges. I've seen way too many devices get pwned through modem vulnerabilities that should never have existed in the first place.
The fact that Google is rewriting critical baseband components in Rust rather than just adding fuzzing and static analysis to their C code shows they're taking this seriously. Baseband security has been an afterthought for decades.
While a great improvement, the article also gives a good overview that cargo isn't without issues when going outside pure Rust desktop/server scenarios, maybe some ideas for improvements.
Memory safety bugs in baseband processors are terrifying because they're sitting right on the cellular interface with system-level privileges. I've seen way too many devices get pwned through modem vulnerabilities that should never have existed in the first place.
The fact that Google is rewriting critical baseband components in Rust rather than just adding fuzzing and static analysis to their C code shows they're taking this seriously. Baseband security has been an afterthought for decades.
While a great improvement, the article also gives a good overview that cargo isn't without issues when going outside pure Rust desktop/server scenarios, maybe some ideas for improvements.
What exactly makes this safer?