[cap-talk] least authority -why flames (was: leastauthority getssome press)

Karp, Alan H alan.karp at hp.com
Mon Jan 22 17:53:04 CST 2007

David Wagner wrote:
> But, if I understand correctly, Polaris does not restrict 
> applications'
> access to the network.  (Please tell me if I got that one 
> wrong.)  This is
> a non-trivial deviation from full-fledged POLA.  This should 
> give pause
> for thought to anyone who wants to argue, without qualifications, that
> we can have POLA at no cost.

We would if we could figure out how to do it.  Whether to do it for a
particular application would involve a decision, so it would not be
completely free.

Alan Karp
Principal Scientist
Virus Safe Computing Initiative
Hewlett-Packard Laboratories 
1501 Page Mill Road
Palo Alto, CA 94304
(650) 857-3967, fax (650) 857-7029

More information about the cap-talk mailing list