[cap-talk] Capabilities for immutable data
Sandro Magi
naasking at higherlogics.com
Sat Mar 26 11:00:45 PDT 2011
On 26/03/2011 1:49 PM, Sandro Magi wrote:
>> Note that these:
>> * designate an object in the environment
>> * enable and permit access to this object
>> * tightly couple authority to the record. If you grant an 'OpenFile',
>> you know exactly what authority you are granting; there is no implicit
>> rights amplification.
>> * enable transparent attenuation, auditing, revocation
>
> I agree these are all lovely properties, though only the first three are
> strictly required for capabilities.
Of course, I meant only the first two are strictly required.
Sandro
More information about the cap-talk
mailing list