[cap-talk] A paper on web-keys
Karp, Alan H
alan.karp at hp.com
Fri Jan 18 12:37:02 EST 2008
James A. Donald wrote:
>
> In an actually useful implementation, one that takes
> advantage of the ways in which capabilities differ from
> ACLs, rather than trying to implement ACLs in
> capabilities, capabilities *will* result in
> administrators losing control - and end users gaining
> control.
>
Two points. First, the control the administrators think they have is illusory because they are considering permission, not authority. When delegation is difficult, users share their credentials. Second, there are times when the user doesn't know whether or not the delegation would violate policy. In that case, we'd like a mechanism that will enforce policy if the user cooperates. Jed described such an approach using Horton.
________________________
Alan Karp
Principal Scientist
Virus Safe Computing Initiative
Hewlett-Packard Laboratories
1501 Page Mill Road
Palo Alto, CA 94304
(650) 857-3967, fax (650) 857-7029
http://www.hpl.hp.com/personal/Alan_Karp
More information about the cap-talk
mailing list