Re: [cap-talk] Define petname
Tyler Close
list at waterken.net
Wed Feb 23 12:54:01 EST 2005
On Feb 23, 2005, at 9:10 AM, Ian G wrote:
> Can we get an objective definition of petname, one that
> does not use the word 'trust', which lacks objectivity?
I'm not sure I agree with that, but here's an alternate definition:
"A petname is a mnemonic for a set of granted authorities"
Of course, we don't typically keep a reified list of these authorities
in our minds, but we must ask ourselves questions that reify these
authorities. For example, "Am I willing to type my social security
number into this web page?". The petname toolbar helps put us in the
right context to answer this question by reminding us which trust
relationship, or set of authorities, we are querying.
To phrase petnames similarly to capabilities: A petname is about
authorization, not authentication.
Tyler
---
The web-calculus is the union of REST and capability-based security:
http://www.waterken.com/dev/Web/
More information about the cap-talk
mailing list