[cap-talk] A paper on web-keys
Jed Donnelley
capability at webstart.com
Fri Jan 18 12:41:22 EST 2008
At 09:10 AM 1/18/2008, Mark Miller wrote:
>On Jan 18, 2008 9:07 AM, Tyler Close <tyler.close at gmail.com> wrote:
> > Is there an actual loss of control, or just the appearance of a loss
> > of control?
>
>I would put it slightly differently:
>
>In moving from ACLs to ocaps, administrators will suffer the loss of
>the appearance of control.
Same essential question as Tyler posted: What control do the
administrators 'appear' to lose? If this is in fact only the
appearance of a loss of control and not an actual loss of control,
then I think we need to clarify this for at least the broader
computer science community - e.g. the questioner from Google
who I quoted. I don't believe we've been effective in doing
this. I think it's a difficult point. I also think that
Toby and Duncan's paper argues against this point, particularly
in their section 1.2, The Value of Non-Delegatable Authority.
--Jed http://www.webstart.com/jed-signature.html
More information about the cap-talk
mailing list