[cap-talk] Scope/span of capability systems (esp. as data), network reach
Marcus Brinkmann
marcus.brinkmann at ruhr-uni-bochum.de
Fri Feb 27 14:16:32 EST 2009
Jed Donnelley wrote:
> I believe most of the current form of the:
>
> "Re: [cap-talk] Confused Deputies in Capability Systems - not"
>
> has actually taken up responding to the claim below, so I think
> that perhaps a different subject name for the thread is appropriate:
Sounds good.
> At 08:36 AM 2/26/2009, Marcus Brinkmann wrote:
>> ...
>> Capabilities can only survive in an isolated, homogeneous environment. I
>> think that this is a serious limitation, which in my opinion severely
>> restricts the applicability of capability theory.
>>
>> Of course, it is possible to be more or less optimistic about the reach of a
>> particular capability regime. My personal estimation is that the safe bubbles
>> within you can enforce a single capability regime are overall pretty small,
>> roughly the size of a single application.
>>
>> In any case, unless you believe that all interacting systems can be subjected
>> to the same (world-wide?) capability system,
>
> I do! That is where my view about capabilities as data such as
> YURLs/Web keys becomes most relevant. As I've noted my best hope
> for advancement of IT systems via getting closer to least privilege
> sharing comes through such networked capability systems.
I think that is a mildly optimistic view :D but it seems to explain the
differences between you and me.
So let me see how you think it could work out. Let's assume your vision is
realized, then it should be possible, I guess (if not, why not?), that you
send me per email a capability that designates the authority to make deposits
to your bank account (presumably in a US bank). I further assume that I can
get or already have a capability to my bank account (in a German national
bank) that allows to make withdrawals. Would I be able to use these two
capabilities to transfer 1 EUR from my account to yours? Where is the service
located that I would need to use to do that? Who owns and runs that service,
and who pays for it? Who regulates it?
Would it work also if I were to live in Cuba or N. Korea instead of Germany?
Thanks,
Marcus
More information about the cap-talk
mailing list