[cap-talk] Capabilities for immutable data
David-Sarah Hopwood
david-sarah at jacaranda.org
Thu Feb 17 17:24:53 PST 2011
On 2011-02-17 17:32, Sandro Magi wrote:
> There is a small debate happening over at LtU about the fundamentals of
> capabilities, and what it means to be a capability [1]. I know there has
> been considerable debate on this before, so I want to focus on one
> specific issue with specific examples: whether a reference to immutable
> data with an access control policy should be considered a capability.
If it has an access control policy -- i.e. you can't unconditionally access
the immutable data -- then you don't have a reference to the actual data,
only to a wrapper. For example, let's say the wrapper will only give you
the data if you pass in a token value, or will only encrypt using the
data as key. In those cases I'd say that the reference to the wrapper is
certainly a capability, because the wrapper has the authority to read the
data, which is not ambiently available. (That is, it isn't public data.)
--
David-Sarah Hopwood ⚥ http://davidsarah.livejournal.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 292 bytes
Desc: OpenPGP digital signature
Url : http://www.eros-os.org/pipermail/cap-talk/attachments/20110218/3a83f012/attachment.bin
More information about the cap-talk
mailing list