[cap-talk] Horton vs. ACLs - private namespaces and theAudit Problem
Karp, Alan H
alan.karp at hp.com
Wed Oct 10 16:49:45 EDT 2007
Toby Murray wrote:
>
> Only if you also know the behaviour of all of the objects in
> the system
> -- otherwise you can't accurately calculate what caps are
> reachable from
> Alan's powerbox. You can certainly determine whether Alan's powerbox
> ever had a cap to an object that itself had previously been
> given a cap
> to the file though.
>
I'm assuming that we're logging all capability transfers. That means we
know what the objects in question actually did without needing to
understand what they might do.
________________________
Alan Karp
Principal Scientist
Virus Safe Computing Initiative
Hewlett-Packard Laboratories
1501 Page Mill Road
Palo Alto, CA 94304
(650) 857-3967, fax (650) 857-7029
https://ecardfile.com/id/Alan_Karp
http://www.hpl.hp.com/personal/Alan_Karp
More information about the cap-talk
mailing list