High assurance prevents that by full specs of all success and failure states, modular code, avoidance of dangerous constructs, covert channel analysis, testing of execution paths, pentesting with source, and so on.
You could conceivably slip a backdoor in with extra cleverness sure. Yet, whether OSS or closed, you depend on talent of reviewers to find it for you. High-assurance closed has most labor put into that. That's why it was more secure. Aside from activities described above that were mandatory for high assurance security but optional or ignored for the rest.
You could conceivably slip a backdoor in with extra cleverness sure. Yet, whether OSS or closed, you depend on talent of reviewers to find it for you. High-assurance closed has most labor put into that. That's why it was more secure. Aside from activities described above that were mandatory for high assurance security but optional or ignored for the rest.