The Language-theoretic approach (LangSec) regards the Internet insecurity epidemic as a consequence of ‘ad hoc’ programming of input handling at all layers of network stacks, and in other kinds of software stacks.  LangSec posits that the only path to trustworthy software that takes untrusted inputs is treating all valid or expected inputs as a formal language, and the respective input-handling routines as a ‘recognizer’ for that language.
The recognition must be feasible, and the recognizer must match the language in required computation power.

Found on the TUHS mailing list https://www.tuhs.org/pipermail/tuhs/2024-May/029846.html