[e-cvs] cvs commit: e/domains/combex/tech products.html edesk.html index.html

[markm@eros.cs.jhu.edu]

markm       02/01/15 14:10:16

  Modified:    domains/combex/about index.html
               domains/combex/tech edesk.html index.html
  Added:       domains/combex/about competition.html
               domains/combex/tech products.html
  Removed:     domains/combex/edesk combexSecureDesktop.html
  Log:
  unbundled old pages

Revision  Changes    Path
1.3       +1 -0      e/domains/combex/about/index.html

Index: index.html
===================================================================
RCS file: /cvs/e/domains/combex/about/index.html,v
retrieving revision 1.2
retrieving revision 1.3
diff -u -r1.2 -r1.3
--- index.html	2002/01/15 18:20:50	1.2
+++ index.html	2002/01/15 19:10:16	1.3
@@ -93,6 +93,7 @@
       <p><a href="mgmt.html">Management Team</a></p>
       <p><a href="value-prop.html">Value Proposition</a></p>
       <p><a href="users.html">Uses and Users of <b><i>E</i></b> Technology</a></p>
+      <p><a href="competition.html">Competition</a></p>
       <p>&nbsp;</p>
       <p> 
       <!-- #EndEditable --></TD>



1.1                  e/domains/combex/about/competition.html

Index: competition.html
===================================================================
 
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<!--last modified on Saturday, October 03, 1998 04:19 PM -->
 


 
Competition

 






 
 
 
 

 
 
 

Competition 
 
 
 
 
 
 
 
 
Home   |   About   |   Technology   |   Papers   |   Contact
 
 
 
 

 
Competition

Because the E platform and CapDesk are infrastructure tools, 
        they touch on many different aspects of computing. We will deal with the 
        competition in several segments: competing security technologies, competing 
        distributed software development technologies, and competing desktops. 

Security Technologies 

The security technology field is broken into hundreds of specialized 
        applications for specialized purposes, which is perhaps one of the best 
        indicators of just how problematic all the existing technologies are. 
        Combex has demonstrated that security can coexist with flexibility and 
        power, but there is another point less often noted in the common wisdom 
        but which is truly inescapable: Security cannot coexist with complexity. 
        Complexity invites the identification of chinks in the armor. 

Here we consider 2 of the more general-purpose and common security systems: 
        access control lists as found in Unix and Windows NT, and firewalls such 
        as the Linux IPCHAINS utility. 

Firewalls: firewalls are inherently unable to implement POLA. 
        They are perimeter security systems only (though the perimeter may be 
        applied to a single computer, for those willing to administer such systems). 
        Once an infection has breached the perimeter, all the materials and machines 
        within the perimeter are immediately open to convenient assault. In a 
        POLA-based security regime, acquisition of a single authority does not 
        assist in acquiring the next authority. POLA by its nature yields defense-in-depth 
        architectures, both on the desktop and on the network. And although a 
        firewall may be able to use virus detection software to catch and delete 
        well known viruses before they infect the network, they cannot catch the 
        brand new virus that has not yet been identified and is in its most infectious 
        state. 

Access Control Lists: Access Control Lists (ACLs) as provided 
        by Unix and Win NT are also inherently unable to implement POLA. It is 
        possible, with acts of sufficient system admin legerdemain, to cast certain 
        applications into their own private user spaces (web servers are frequently 
        treated as separate users), but this is far too complicated for the user 
        of a word processor that supports the creation of document-embedded viruses 
        with an embedded programming language, or the user of a web browser that 
        supports Active-X controls. 

All the currently popular security systems are designed as wrap-arounds 
        for systems in which the security regime was inadequately addressed in 
        the deepest underpinning layers. To meet the security needs of today’s 
        extreme-security organizations, and tomorrow’s average user of Web-based 
        smart contracting, a fundamental change is required: the type of change 
        afforded by E and CapDesk. 

Distributed Software Development Technologies 

The premier languages of the Web today are Java and Perl. Perl is a powerful 
        string-manipulation language for building short CGI scripts to drive simple 
        data-driven Web pages. It is virtually useless once one leaves this important 
        but limited niche: its lack of modularity and casual disregard for readability 
        make it unusable for more complex applications. 

Java is a serious language for diverse professional purposes, and it 
        does have a security architecture. 

 

CapDesk running a Web Browser that has launched an E 
        caplet. Caplets deliver on the promise first made by Java applets: flexible 
        powerful applications downloaded over the Web that can be run safely on 
        the local machine while still being centrally maintained. Note the Save 
        button on the Caplet, which is impossible on a Java Applet because of 
        the restrictions imposed by the Java Sandbox 

The Java Security Manager is not, strictly speaking, capable of implementing 
        POLA. However, close inspection of the documentation shows that, in 
        principle, it comes surprisingly close to supporting POLA. Alas, there 
        is a fatal flaw in the Security Manager: using this fine-grain security 
        imposes such a complexity burden on the user that, in practice, no one 
        ever uses it. The Security Manager has 3 basic settings: 
 

The Java Sandbox for applets. The Java Sandbox is almost completely 
            confined. It is sufficiently confined so that applets are unusable—if 
            you wrote a spreadsheet applet, for example, the user could spend 
            hours in your applet developing the perfect model, only to find that 
            he cannot save his work in a local file because the applet does not 
            have authority to write a file. The sandbox does, however, grant the 
            authority to send your data back to the applet’s owner. As a 
            consequence, it is easier to make applets that steal your data than 
            it is to make applets that save your data.
 

 The Java Application Environment. In the Java Application Environment, 
            the security manager is effectively turned off, and the application 
            has the same authority to read, edit, steal, and delete your data 
            as does any application written in C or FORTRAN.
 

 The Certificate Authenticating settings. This is not a single setting, 
            rather, it is the whole collection of other settings which turn different 
            authorities on and off based on certificates. The executives of Combex 
            have never seen, heard of, or read about anyone actually using these 
            settings in the field. They are simply too complicated for practical 
            application. This contrasts starkly with CapDesk, in which well-understood 
            user interface machinery such as the File Dialog and the drag-drop 
            metaphor perform security and authorization functions transparently 
            for the user during normal operations.

In the specific niche of secure distributed application development, 
        Java has a number of other disadvantages compared to E, including these: 
 

The Java concurrency architecture is based on threads, which encourage 
            the creation of delicate software systems that are vulnerable to sudden 
            and catastrophic lock-up after deployment because of undetectable 
            deadlock bugs
 

 Communication via RMI is not transparently encrypted.
 

 The RMI protocol is inherently insecure even if the communications 
            pipes are encrypted

In a very important sense, Java should not be looked upon as a competitor. 
        The E platform runs on top of the Java Virtual Machine; 
        all E programs are 100% Pure Java according to the definition 
        promulgated by JavaSoft. 

 
 
 
 
 
 





1.5       +4 -3      e/domains/combex/tech/edesk.html

Index: edesk.html
===================================================================
RCS file: /cvs/e/domains/combex/tech/edesk.html,v
retrieving revision 1.4
retrieving revision 1.5
diff -u -r1.4 -r1.5
--- edesk.html	2002/01/15 18:47:27	1.4
+++ edesk.html	2002/01/15 19:10:16	1.5
@@ -6,7 +6,7 @@
 <HEAD>
 <META HTTP-EQUIV="Content-Type" CONTENT="text/html;CHARSET=iso-8859-1">
 <!-- #BeginEditable "doctitle" --> 
-<TITLE>CapDesk</TITLE>
+<TITLE>E and CapDesk</TITLE>
 <!-- #EndEditable --> 
 <meta name="Author" content="Mark S. Miller">
 <link rel=author rev=made href="mailto:markm@caplet.com" title="Mark S. Miller">
@@ -27,8 +27,9 @@
         <TR> 
           <TD ALIGN="LEFT"><a href="../index.html"><img src="../images/dominos.gif" width="64" height="64" align="absmiddle" border="0"></a></TD>
           <TD ALIGN="RIGHT"> 
-            <P ALIGN="RIGHT"><FONT SIZE="7"><!-- #BeginEditable "BigTitle" --><FONT SIZE="7"><B>CapDesk<font size="5"><br>
-              The Combex Desktop</font></B></FONT><!-- #EndEditable --></FONT> 
+            <P ALIGN="RIGHT"><FONT SIZE="7"><!-- #BeginEditable "BigTitle" --><b>E 
+              and CapDesk<font size="5"><br>
+              POLA for the Distributed Desktop</font></b><!-- #EndEditable --></FONT> 
           </TD>
         </TR>
       </TABLE>



1.4       +4 -2      e/domains/combex/tech/index.html

Index: index.html
===================================================================
RCS file: /cvs/e/domains/combex/tech/index.html,v
retrieving revision 1.3
retrieving revision 1.4
diff -u -r1.3 -r1.4
--- index.html	2002/01/15 18:47:27	1.3
+++ index.html	2002/01/15 19:10:16	1.4
@@ -54,10 +54,12 @@
       <p align="left">&nbsp;
       <p align="left"><a href="opportunity.html">The Opportunity for a Virus-Invulnerable 
         Desktop</a> 
-      <p align="left"><a href="edesk.html">CapDesk: The Combex Desktop</a>
-      <p align="left">&nbsp; 
+      <p align="left"><a href="edesk.html">E and CapDesk: POLA for the Distributed 
+        Desktop</a> 
+      <p align="left"><a href="products.html">Coming Products</a>
       <p align="left"><a href="darpaBrowser.html">The Darpa Browser</a> 
       <p align="left"><a href="screen-shots.html">Screen Shots</a> 
+      <p align="left">&nbsp; 
       <p>More information about the <b><i>E</i></b> platform can be found </p>
       <p align="center">in <a href="http://www.skyhunter.com/marcs/ewalnut.html"><img src="../papers/images/ewalnut-yellow.gif" width="118" height="120" border="0" align="absmiddle">E 
         in a Walnut</a> &nbsp;&nbsp;and at&nbsp;&nbsp; <a href="http://www.erights.org/">The 



1.1                  e/domains/combex/tech/products.html

Index: products.html
===================================================================
 
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<!--last modified on Saturday, October 03, 1998 04:19 PM -->
 

 
Coming Products
 


 
 
 
 

 
 
 

Coming 
              Products 
 
 
 
 
 
 
 
 
Home   |   About   |   Technology   |   Papers   |   Contact
 
 
 
 

  

 
CapDeskPro

 

The CapDesk product will come bundled with the critical minimal collection 
        of office applications needed for users to start operations: a text editor, 
        web browser, mail tool, word processor, and spreadsheet. The web browser, 
        which will be based on the browser already under development for the DARPA 
        effort, will support the execution of E caplets, 
        the E variant of the java applet that combines power, flexibility, 
        security, and simplicity in a fashion not possible for the traditional 
        applet. Power users can still use their favorite Microsoft application 
        using a VMWare compatibility box, which we may bundle or which the user 
        may acquire separately.

 

CapDesk running on a Linux kernel, with standard Windows applications 
        running in a VMWare virtual machine, a “Windows Compatibility Box”

 
CapIDE

Combex will develop a powerful Integrated Development Environment (IDE) 
        for E development. This product is critical to enabling 
        diverse developers from diverse fields to achieve high levels of productivity 
        building out the capability-secure applications needed to make CapDesk 
        a productive space for all users. 

This IDE will include traditional components such as a context-sensitive 
        browser and an integrated compiler. The IDE will also incorporate a critical 
        enhancement to a traditional IDE component: a source-level distributed 
        debugger specifically designed to enable the debugging of programs that 
        run across multiple processors.