[cap-talk] C-like Capability language
Jonathan S. Shapiro
shap at eros-os.com
Fri Aug 1 15:45:17 CDT 2008
On Fri, 2008-08-01 at 00:13 +0100, Toby Murray wrote:
> On Thu, 2008-07-31 at 16:00 -0700, Mike Samuel wrote:
> >
> >
> > 2008/7/31 William Pearson <wil.pearson at gmail.com>
> > I want to do capability based security in a VM
Will:
It isn't clear why you want to do this. In a type-safe VM, object
references already *are* capabilities (unless the underlying VM
specification is badly broken). As "proof by example", look at things
like Joe-E or E.
What do you anticipate will be true about capabilities in your language
that is not true of object references more generally?
> > Maybe start with a safe language like Cyclone instead.
> > From http://cyclone.thelanguage.org/
Not if you plan to build system-level stuff, but possibly.
shap
More information about the cap-talk
mailing list