[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Distributed Capabilities

From: Ludovic Courtès
Subject: Distributed Capabilities
Date: Mon, 27 Mar 2006 14:57:15 +0200
User-agent: Gnus/5.110004 (No Gnus v0.4) Emacs/21.4 (gnu/linux)


Tom Bachmann <address@hidden> writes:

> As described in one of my mails [1] to coyotos-dev and somewhere on
> the E language homepage [2] it is possible to implement transparent
> "remote" capabilities, i.e. caps that are invoked like normal local
> ones but that actually invoke servers on other machines over the
> net.

That is feasible, except that you lose confinement (i.e., the bit
representation of capabilities is visible to the participants, so one
can transfer capabilities off-line, e.g., over the phone), unless you
consider that some ``trusted kernel'' hides that representation to
applications on both ends.  This is what is proposed in [0] where the
trusted thing is the language runtime running on both ends.

However, in practice, as Marcus said, everyone is free to run whatever
OS they may like.

D-BUS' object paths, CORBA's IORs and the likes are somewhat comparable
to ``distributed capabilities'' --- but confinement is just impossible
in this context.


[0] http://www.erights.org/elib/capability/dist-confine.html

reply via email to

[Prev in Thread] Current Thread [Next in Thread]