[cap-talk] A better reference for the "capabilities propagate too easily" argument
Karp, Alan H
alan.karp at hp.com
Wed Aug 1 19:47:28 EDT 2007
Jed wrote:
>
> Maybe Alan can describe the justification for the Client
> Utility work in the face of damning criticisms of capabilities
> at the time?
>
I'd never heard of capabilities when I did that work. (My degree is in
astronomy.) The mere thought of managing access control on our stated
goal of a million machines across administrative domains drove me to
reinvent them. Part of the motivation for going to split capabilities
was to address concerns that we raised ourselves from thinking about the
Orange Book. It wasn't a total waste. That's where the mechanisms Ping
latter dubbed VOC came from.
________________________
Alan Karp
Principal Scientist
Virus Safe Computing Initiative
Hewlett-Packard Laboratories
1501 Page Mill Road
Palo Alto, CA 94304
(650) 857-3967, fax (650) 857-7029
https://ecardfile.com/id/Alan_Karp
http://www.hpl.hp.com/personal/Alan_Karp
More information about the cap-talk
mailing list