These are right on target:
Small software size.
Free (as in Freedom) Software
Open Source Hardware.
This One, I don't know enough to know if its true:
Small compilation toolchain.
But it probably is...
These are also good, albeit sadly the only one I think will be done more often than not, is #1 and even that doesn't happen nearly enough...
#3 also will happen, albeit part of it only... #2 will probably happen more in the BSD crowd too,
#8, will happen somewhat also, but in general, these things will rarely happen beyomd that, unless people start getting more intelligent...
But we know corporations hate that and will actively fight against that... but yeah, I agree your points are good, just very unlikely...
1: Choose hardware which supports 100% free software. (Since you cannot trust binary blobs).
2: Choose an OS which has a small kernel and other minimal software that you need. (OpenBSD is the only one I can see here today)
3: Do not trust the developer of that OS. Read the code and verify that there are no bugs.
How do I know that the binary made has no tampering and the code which I read has been compiled.(Now comes the worst part.)
4: Choose a small compiler. It typically should be a C compiler because Oses are written in C. (I know none which is small.)
5: Read the code and verify there are no bugs.
6: Choose a small communication software (preferably written in C as you would have to read code of another compiler if it were written in different language).
7: Read code and verify there are no bugs.
8: Encrypt with a good encryption scheme and send the message not trusting the sender
Although, I mostly try to do the spirit of 1 and 2 as is reasonable, and somewhat of 3 with operating systems that I do not trust.
Same with 8, but I don't think me or other people anywhere do any of these completely...
That being said, perfect security is utterly impossible in this life and in the hardware/software world, it is 100% impossible.
That being said also, I try to to do as much as I feel I can to resist the corporate nonsense, looking at redhat and the other evil proprietary companies of the world...
That all being said, its a good list, I wish people would at least attempt to push towards one or more, of these, but even that is mega hard.
So, thanks, but its still too early for this.
HyperbolaBSD: The Future of Secure Libre Lightweight Operating Systems!