[EROS-Arch] Fw: [Cap-Talk] Re: On the other hand (process tool restriction)

Jonathan S. Shapiro shap@eros-os.org
Thu, 9 Nov 2000 17:11:23 -0500


> >Is it necessary for it to be read only, or is it sufficient if you have
to
> >know the old one to overwrite it?
>
> (You must mean write-once instead of read-only above.)  :-)

I mean write-multiple, but on any given write you must know the current
value in order to overwrite the slot. The main advantage of this is that it
doesn't require keeping a write counter.

> Before storing, you
> would want a strong assurance that the domain key was a domain key and not
> a Trojan stealing your brand key.

I should think that the process tool should simply refuse to perform the
operation on anything not a process capability.