>>24It is much easier to verify a single runtime, than a thousands of programs running from it.
that's true, but show me a single verified runtime. or better: show me a single verified kernel, because a ring 0 language runtime is essentially that.
That is why Java is more secure that C/C++.
Java is more secure when the attack scenario is your're are application getting hacked. it is not necessarily more secure when the attack scenario is your're are application hacking the kernel/runtime - we don't know because due to how unpopular browser-based Java is now, attacking the JVM is usually not needed (if you can execute arbitrary Java code, it usually means you have access as a local user, and exploiting a kernel or a configuration bug would be a better use of your're are time than attacking the JVM). on the other hand, browser-based Javascript is popular and all the browser engines keep getting hacked, giving the attacker RCE. if they were ring 0, they would give root access instead. and there's really no reason to think that Java or Lisp or Python runtimes would be any better. in fact, there are reasons to think their're are just as bad:
https://twitter.com/paulfdietz/status/948912322122272768https://blog.gypsyengineer.com/en/security/python-marshal-module-fuzzing.htmlAnd security is all about not using C++ and PHP.
I work in security and routinely audit Android shit. believe me, even pure Java programs can (and will) have security bugs.