Key/Object equivalence?
William S. Frantz
frantz@netcom.com
Fri, 16 Dec 1994 13:55:21 -0800 (PST)
> Scanning through one of the KeyKOS papers again, I noticed
> the "Keybits" object, which presumably is used to implement KIDs.
> Are keys to this object generally available to most everything
> in a KeyKOS system, or are they privileged? In other words,
> is having read-only access to the actual bits comprising a key
> considered a security threat in some situations?
KEYBITS is considered privilaged. There are a number of reasons.
It allows the holder to violate abstraction. It allows the holder
to nullify one of the asumptions the kernel was built on. It prevents
the transparent movement of objects. etc. etc.
-----------------------------------------------------------------
Bill Frantz Periwinkle -- Computer Consulting
(408)356-8506 16345 Englewood Ave.
frantz@netcom.com Los Gatos, CA 95032, USA