[cap-talk] What Horton cannot do? (Was: mailkey: transfer of accountability...)
Karp, Alan H
alan.karp at hp.com
Sun Jun 3 01:29:04 EDT 2007
Jed wrote:
>
> The problem is that most IT professionals shun capability
> systems because of criticisms like those in P-1935.
> They shun capability systems (and thus the possibility
> of solving their virus problems) at least partly (mostly?)
> because they believe that capability systems cannot
> adequately provide accountability for actions taken
> within such systems - the "reactive" sort of 'access
> control' that MarkM refers to in the Horton paper.
>
Another oft cited criticism is the difficulty in managing fine-grained
authorities. Of course, combining designation with authorization shows
that criticism is a misconception.
________________________
Alan Karp
Principal Scientist
Virus Safe Computing Initiative
Hewlett-Packard Laboratories
1501 Page Mill Road
Palo Alto, CA 94304
(650) 857-3967, fax (650) 857-7029
https://ecardfile.com/id/Alan_Karp
http://www.hpl.hp.com/personal/Alan_Karp
More information about the cap-talk
mailing list