the "Reflections on Trusting Trust" lecture and paper
E162094
"Reflections on Trusting Trust" is Ken Thompson’s influential 1984 Turing Award lecture and paper that exposed how a compiler could be maliciously modified to invisibly insert security vulnerabilities, fundamentally shaping thinking about software trust and supply-chain security.
All labels observed (2)
| Label | Occurrences |
|---|---|
| Reflections on Trusting Trust | 1 |
| the "Reflections on Trusting Trust" lecture and paper canonical | 1 |
How this entity was disambiguated
This entity first appeared as the object of triple T1413057 — resolving that mention is where its identity was fixed. The disambiguator weighed these candidate entities and picked the highlighted one (or “None”, minting a new entity). This is how homonymy is resolved: the same surface form can point to different entities.
Target entity: the "Reflections on Trusting Trust" lecture and paper Context triple: [Ken Thompson, knownFor, the "Reflections on Trusting Trust" lecture and paper]
-
A.
The Cathedral and the Bazaar
The Cathedral and the Bazaar is a highly influential essay and book on open-source software development that contrasts centralized, top-down programming models with decentralized, collaborative approaches.
-
B.
The Essence of Security
"The Essence of Security" is a book by former U.S. Secretary of Defense Robert McNamara that outlines his views on national security, nuclear strategy, and defense policy during the Cold War.
-
C.
Things a Computer Scientist Rarely Talks About
Things a Computer Scientist Rarely Talks About is a reflective book by Donald E. Knuth in which he discusses the philosophical, spiritual, and personal dimensions underlying his life and work in computer science.
-
D.
New Directions in Cryptography
New Directions in Cryptography is a landmark 1976 paper that introduced the concepts of public-key cryptography and digital signatures, fundamentally reshaping modern cryptography and secure communications.
-
E.
The New Hacker's Dictionary
The New Hacker's Dictionary is a comprehensive lexicon and cultural guide to hacker slang, folklore, and traditions, compiled and edited by Eric S. Raymond.
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
Target entity: the "Reflections on Trusting Trust" lecture and paper Target entity description: "Reflections on Trusting Trust" is Ken Thompson’s influential 1984 Turing Award lecture and paper that exposed how a compiler could be maliciously modified to invisibly insert security vulnerabilities, fundamentally shaping thinking about software trust and supply-chain security.
-
A.
The Cathedral and the Bazaar
The Cathedral and the Bazaar is a highly influential essay and book on open-source software development that contrasts centralized, top-down programming models with decentralized, collaborative approaches.
-
B.
The Essence of Security
"The Essence of Security" is a book by former U.S. Secretary of Defense Robert McNamara that outlines his views on national security, nuclear strategy, and defense policy during the Cold War.
-
C.
Things a Computer Scientist Rarely Talks About
Things a Computer Scientist Rarely Talks About is a reflective book by Donald E. Knuth in which he discusses the philosophical, spiritual, and personal dimensions underlying his life and work in computer science.
-
D.
New Directions in Cryptography
New Directions in Cryptography is a landmark 1976 paper that introduced the concepts of public-key cryptography and digital signatures, fundamentally reshaping modern cryptography and secure communications.
-
E.
The New Hacker's Dictionary
The New Hacker's Dictionary is a comprehensive lexicon and cultural guide to hacker slang, folklore, and traditions, compiled and edited by Eric S. Raymond.
- F. None of above. chosen
Statements (45)
| Predicate | Object |
|---|---|
| instanceOf |
academic paper
ⓘ
lecture ⓘ |
| author |
Ken Thompson
ⓘ
Ken Thompson ⓘ
surface form:
Kenneth Thompson
|
| awardAssociatedWith |
Turing Award
ⓘ
surface form:
ACM A.M. Turing Award
|
| conclusion | it is difficult to establish absolute trust in software systems ⓘ |
| describes |
how a compiler can be modified to insert malicious code
ⓘ
how a compiler can propagate a hidden backdoor without source code changes ⓘ trusting trust problem ⓘ |
| exampleUsed |
compiler that inserts its own Trojan when recompiled
ⓘ
modified C compiler inserting a login backdoor ⓘ |
| fieldOfWork |
computer science
ⓘ
systems security ⓘ |
| hasKeyIdea |
malicious behavior can be hidden in compilers rather than application source code
ⓘ
malicious modifications can self-propagate across compiler recompilations ⓘ source code review alone cannot guarantee absence of backdoors ⓘ trust must extend to compilers and build tools ⓘ |
| historicalSignificance |
early articulation of software supply-chain attacks
ⓘ
foundational work in understanding software trust chains ⓘ |
| illustrates |
Trojan horse in the C compiler
ⓘ
Trojan horse in the Unix login program ⓘ |
| influencedConcept |
diverse double-compiling
ⓘ
reproducible builds ⓘ software provenance ⓘ toolchain integrity verification ⓘ trusted computing base ⓘ |
| influencedField |
computer security
ⓘ
formal methods for compiler verification ⓘ secure compilation ⓘ software engineering ⓘ software supply-chain security ⓘ |
| languageOfWork | English ⓘ |
| mainTopic |
compiler backdoors
ⓘ
self-replicating malware in toolchains ⓘ software supply-chain security ⓘ software trust ⓘ trust in computing systems ⓘ |
| notableFor |
demonstrating undetectable compiler backdoors
ⓘ
shaping discourse on software trust and verification ⓘ |
| presentedAs |
Turing Award
ⓘ
surface form:
Turing Award lecture
|
| proposesConcept |
invisible vulnerabilities in compiled binaries
ⓘ
trusting the entire toolchain ⓘ |
| publicationType | Turing Award lecture paper ⓘ |
| publicationYear | 1984 ⓘ |
| publishedIn | Communications of the ACM ⓘ |
How these facts were elicited
The pipeline generated the facts above by prompting gpt-5.1 with this entity's name + description and the instruction below.
You are a knowledge base construction expert. Given a subject entity and a description of it, return factual statements that you know for the subject as a JSON list of dictionaries(triples), where keys must be "subject", "predicate" and "object". The number of facts may be very high, between 25 to 50 or more, for very popular subjects. For less popular subjects, the number of facts can be very low, like 5 or 10. # Requirements - If you don't know the subject at all, return an empty list. - If the subject is not a named entity, return an empty list. - Include at least one triple where predicate is "instanceOf". - Do not get too wordy. - Separate several objects into multiple triples with one object.
Subject: the "Reflections on Trusting Trust" lecture and paper Description of subject: "Reflections on Trusting Trust" is Ken Thompson’s influential 1984 Turing Award lecture and paper that exposed how a compiler could be maliciously modified to invisibly insert security vulnerabilities, fundamentally shaping thinking about software trust and supply-chain security.
Referenced by (2)
Full triples — surface form annotated when it differs from this entity's canonical label.