[cap-talk] Capabilitites and Directories
Karp, Alan H
alan.karp at hp.com
Fri Nov 6 16:06:56 PST 2009
Ben Kloosterman wrote:
>
> or is something like this "Distributed capability-based authorization
> architecture" ( http://www.freepatentsonline.com/7404203.html) more
> appropriate ?
>
I only did a quick scan of the patent, but the paragraph starting on line 4 of column 10 makes it clear that they built "capabilities as rows." They even managed to end up with ambient authorities and non-delegation! The patent does describe a non-stupid way of deciding which user gets which set of initial capabilities, but there are better ways to do that, too.
________________________
Alan Karp
Principal Scientist
Virus Safe Computing Initiative
Hewlett-Packard Laboratories
1501 Page Mill Road
Palo Alto, CA 94304
(650) 857-3967, fax (650) 857-7029
http://www.hpl.hp.com/personal/Alan_Karp
More information about the cap-talk
mailing list