[cap-talk] On revocation and the use of wrappers and In Defenseof Identities
Pierre THIERRY
nowhere.man at levallois.eu.org
Sun Jan 14 23:09:05 CST 2007
Scribit Marcus Brinkmann dies 07/12/2006 hora 17:35:
> Two existing implementations:
>
> 1) Make invocation constant in time and revocation linear in time with
> the depth of delegation. This is what current L4 implementations
> do. In this case, the revoker will be punished. L4 does allow
> arbitrary nesting (even in the L4.sec designs) at the cost of
> making unmap() preemptible.
>
> 2) Make invocation linear in time with the depth of delegation and
> revocation constant in time. This is what EROS does. In this
> case, the invoker will be punished. EROS does not allow arbitrary
> nesting.
Maybe I'm missing something about that previous discussion on revokation
and delegation: you discuss time linear with the depth of delegation,
but isn't delegation a tree? Then shouldn't time be exponential with
depth of delegation?
Curiously,
Pierre
--
nowhere.man at levallois.eu.org
OpenPGP 0xD9D50D8A
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://www.eros-os.org/pipermail/cap-talk/attachments/20070115/76d43cb3/attachment.bin
More information about the cap-talk
mailing list