[cap-talk] What sustained interest in capabilities
David-Sarah Hopwood
david.hopwood at industrial-designers.co.uk
Thu Jan 8 00:17:27 EST 2009
Mark Miller wrote:
> [...] We will explain how Doug uses CapDesk and Polaris to reduce his
> exposure while still running on a conventional operating system. But
> first, it behooves us to be clear about the limits of this approach. In
> our story, we combine the functionality of CapDesk and Polaris, though
> they are not yet actually integrated. (Integrating CapDesk's protection
> with that provided by an appropriate secure operating system would yield
> yet further reductions in exposure, but these are beyond the scope of
> this dissertation.)
Note that *actually* integrating multiple capability system layers, such
as an OS-level isolation mechanism like Polaris and a language-level
desktop environment like CapDesk, would be an example of the approach
I've been arguing for in this thread.
--
David-Sarah Hopwood ⚥
More information about the cap-talk
mailing list