[cap-talk] Reference implementation of Federated Access Management ready for review

[Pierre THIERRY]

Scribit Karp, Alan H dies 12/06/2007 hora 23:50:
> Don't panic when you see the size of the report.  The last 60 pages
> contain a detailed description of the reference implementation of the
> Zebra Copy scenario.

I didn't read the code, only the report. How is revocation managed? As
the scenario described doesn't seem to involve caretakers, is revocation
of a capability made by emitting a cryptographically signed revocation?
Does that mean that revocation could fail if the revocation is not
received?

BTW, as it was said earlier, that's probably exactly the kind of work
that could really help advocating POLA and ABAC: retrofitting them in
existing technologies.

Is it already used in productions systems?

Curiously,
Pierre
-- 
nowhere.man at levallois.eu.org
OpenPGP 0xD9D50D8A
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://www.eros-os.org/pipermail/cap-talk/attachments/20070621/6312def5/attachment-0001.bin