[e-lang] Microsoft's laws of identity
John Carlson
john.carlson3 at sbcglobal.net
Sun Jul 24 19:11:57 EDT 2005
Mark Miller wrote:
> John Carlson wrote:
>
>> I would be very careful using Java, because one can use aspect
>> oriented programming to gain access from the
>> calling program into almost any part of the program. Thus you should
>> pass all your capabilities into your Java
>> program, not try to hide some inside your Java program.
>
>
> John, I don't understand this comment at all. What does aspect
> oriented programming have to do with anything?
>
Basically, aspect-oriented programming/metaprogramming allows you to
insert code into a program and watch
member variables as they change. So if someone can control the class
loader for your program, they can make
whatever changes they want to your code, including grabbing references
and capabilities-as-data. So if you can't
trust your caller, you shouldn't be trying to hide capabilties within
your program.
I don't know if this is something, but it's an additional thing Java
programmers should be worried about.
It's not like you can create your program and turn off write permission,
which is the old way of thinking (Unix,
windows).
John
More information about the e-lang
mailing list