OSDev.org

The Place to Start for Operating System Developers
It is currently Fri Apr 19, 2024 3:49 am

View unanswered posts | View active topics


Board index » Operating System Development » OS Design & Theory

All times are UTC - 6 hours




Post new topic Reply to topic  Page 1 of 1
  [ 3 posts ] 
  Print view Previous topic | Next topic 
Author Message
kenna
 Post subject: Capabilities
PostPosted: Mon Aug 13, 2007 5:50 pm 
Offline

Joined: Fri Apr 13, 2007 1:26 pm
Posts: 8
Could someone give me a simple explanation of how a secure capability could be generated? I've understood the concept of capabilities, and I find it a very attractive idea, however, I don't really know how to actually implement something like that.

I don't need code or any advanced stuff, just a basic rundown of how it actually works.
Top
 Profile  
 
Crazed123
 Post subject:
PostPosted: Mon Aug 13, 2007 8:14 pm 
Offline
Member
Member

Joined: Thu Oct 21, 2004 11:00 pm
Posts: 248
You either store capabilities in kernel space and access them via system calls or cryptographically sign them so that the data can be moved around arbitrarily while maintaining its security.
Top
 Profile  
 
Avarok
 Post subject:
PostPosted: Fri Aug 31, 2007 5:50 am 
Offline
Member
Member

Joined: Thu Aug 30, 2007 9:09 pm
Posts: 102
You could also prevent programs from having the capability to access files or disk except for specific files which cannot include the capabilities files themselves. This automagically provides all the persistence/temporariness you could want and secures your capabilities data quite nicely without any adding any additional semantic forms. Clean semantics is sexy.

Only problem is you need a file system that's very effective for small files. I recommend Reiser4.

_________________
There are two ways of constructing a software design: One way is to make it so simple that there are obviously no deficiencies, and the other way is to make it so complicated that there are no obvious deficiencies.
- C. A. R. Hoare

Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  Page 1 of 1
  [ 3 posts ] 

Board index » Operating System Development » OS Design & Theory

All times are UTC - 6 hours


Who is online

Users browsing this forum: No registered users and 31 guests

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group