Re: Definition of secure system

l4-hurd

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Definition of secure system

From:	Jonathan S. Shapiro
Subject:	Re: Definition of secure system
Date:	Wed, 02 Nov 2005 15:47:24 -0500

On Wed, 2005-11-02 at 09:04 +0000, StèveToléqué wrote:
> Jonathan S. Shapiro <shap <at> eros-os.org> writes:
> 
> > 
> > Not intended to be complete, just thought provoking, and I'm thinking
> > single-user here:
> > 
> >   A secure operating system is one where, after I unintentionally
> >   run an actively hostile program, I'm still in control of the machine.
> > 
> > The key word is "unintentional", because it implies that I shouldn't
> > need to do anything special to ensure my safety.
> > 
> > shap
> > 
> 
> Hello,
> 
> Why the restriction to single user?   By restating the definition as:
> 
>  A secure operating system is one where no process is allowed to deny a user 
>  control of that user's resources.
> 
> the single-user case is made a subset of the general case. No?

Yes. Technically, your version is better. My version is easier to
explain as a novel feature. It's something my mother can understand.

shap

[Prev in Thread]

Current Thread

[Next in Thread]

Definition of secure system, Jonathan S. Shapiro, 2005/11/01
- Re: Definition of secure system, StèveToléqué, 2005/11/02
  - Re: Definition of secure system, Jonathan S. Shapiro <=

Prev by Date: Re: About explicit security bypass (Was : Re: Changing from L4 to something else...)
Next by Date: Re: On PATH_MAX
Previous by thread: Re: Definition of secure system
Next by thread: Persistence Pros and Cons
Index(es):
- Date
- Thread