Capability-Based Security for Redox: Namespace and CWD as Capabilities(www.redox-os.org)

46 pointsby ejplatzer12 hours ago2 comments

als09 hours ago
Good work. I'm happy to see this for Redox. There are numerous implementations of capabilities now, and they confirm that the concept really does simplify access control and sandboxing.
- ambicapter6 hours ago
  Could I get some examples? I'm interested in learning more.
  - davexunit6 hours ago
    http://habitatchronicles.com/2017/05/what-are-capabilities/
    https://files.spritely.institute/papers/spritely-core.html
  - wmf4 hours ago
    https://www.cl.cam.ac.uk/research/security/capsicum/
  - Icathian3 hours ago
    Cloudflare's developer platform uses them. That's what their "bindings" are.
iam_circuit7 hours ago
[dead]