<br><br><div class="gmail_quote">On Thu, Jun 11, 2009 at 3:11 PM, Karp, Alan H <span dir="ltr"><<a href="mailto:alan.karp@hp.com">alan.karp@hp.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
I don't think any of the definitions I've seen so far capture what to me is the essential nature of ambient authority, the separation of designation from authorization. I think the following captures that point.<br>
<br>
"A system in which the submitter of a request does not specify which permissions to apply to the request is said to use ambient authorities."<br>
</blockquote><div><br>I like that too!<br><br>I'd change to "...which of its permissions to apply...". <br> </div><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<br>
I'm not sure if "does not" should be "need not" or "must not."<br>
</blockquote><div><br>Hmmm. I'm not sure either. I think I like "does not" best, but I'm not sure I can say why.<br><br> </div></div>-- <br>Text by me above is hereby placed in the public domain<br><br>
Cheers,<br> --MarkM<br><br>