[cap-talk] "ambient authority" on wiki.erights.org
Karp, Alan H
alan.karp at hp.com
Fri Jun 12 11:52:03 EDT 2009
David-Sarah Hopwood wrote:
>
> Karp, Alan H wrote:
> > I don't think any of the definitions I've seen so far capture what to me is
> > the essential nature of ambient authority, the separation of designation from
> > authorization.
>
> I don't think that is essential. Consider a split-capability system, where
> permissions are separable from designators, but both need to be included
> in a request.
By "separation" I meant that the authorization is independent of any particular request. Split capabilities include the desired authorization with the request. I believe the definition I gave for ambient authorities avoids this confusion.
________________________
Alan Karp
Principal Scientist
Virus Safe Computing Initiative
Hewlett-Packard Laboratories
1501 Page Mill Road
Palo Alto, CA 94304
(650) 857-3967, fax (650) 857-7029
http://www.hpl.hp.com/personal/Alan_Karp
More information about the cap-talk
mailing list