Re: Challenge: Find potential use cases for non-trivial confinement

l4-hurd

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Challenge: Find potential use cases for non-trivial confinement

From:	Marcus Brinkmann
Subject:	Re: Challenge: Find potential use cases for non-trivial confinement
Date:	Mon, 01 May 2006 17:30:13 +0200
User-agent:	Wanderlust/2.14.0 (Africa) SEMI/1.14.6 (Maruoka) FLIM/1.14.7 (Sanjō) APEL/10.6 Emacs/21.4 (i486-pc-linux-gnu) MULE/5.0 (SAKAKI)

At Mon, 1 May 2006 17:00:26 +0200,
Pierre THIERRY <address@hidden> wrote:
> Why the hell then should we worry about security among users of the same
> system? Let's them choose socialy what they have access to, instead of
> enforcing those access policies with technical solutions!

This is not an unreasonable thing to do.  However, this is only
possible if there actually is a social level, a social network of
interaction between the users that allows them to make these
decisions.

In the context of a computer system, we do not always have this.  If
the other entities on your computer are anonymous, and not part of
your social network (for example, because the group of users is too
big and heterogenous, or because we are actually talking about a
browser that may be compromised by a worm), then there is no possible
basis for enforcing the access policies socially.  In these cases, the
technical solutions may work better.

So, yes, there are legitimate cases for some security policies, and it
is interesting to explore how technical and social policies interact.

Thanks,
Marcus

[Prev in Thread]

Current Thread

[Next in Thread]

Re: machine owner (was: Re: Challenge: Find potential use cases for non-trivial confinement), (continued)
- Re: Challenge: Find potential use cases for non-trivial confinement, Pierre THIERRY, 2006/05/01
  - Re: Challenge: Find potential use cases for non-trivial confinement, Jonathan S. Shapiro, 2006/05/01
    - Re: Challenge: Find potential use cases for non-trivial confinement, Marcus Brinkmann, 2006/05/01
    - Re: Challenge: Find potential use cases for non-trivial confinement, Jonathan S. Shapiro, 2006/05/01
    - Re: Challenge: Find potential use cases for non-trivial confinement, Marcus Brinkmann, 2006/05/01
  - Re: Challenge: Find potential use cases for non-trivial confinement, Bas Wijnen, 2006/05/01
    - Re: Challenge: Find potential use cases for non-trivial confinement, Pierre THIERRY, 2006/05/01
- Re: Challenge: Find potential use cases for non-trivial confinement, Bas Wijnen, 2006/05/01
  - Re: Challenge: Find potential use cases for non-trivial confinement, Pierre THIERRY, 2006/05/01
    - Re: Challenge: Find potential use cases for non-trivial confinement, Marcus Brinkmann <=
    - Re: Challenge: Find potential use cases for non-trivial confinement, Bas Wijnen, 2006/05/01
    - Re: Challenge: Find potential use cases for non-trivial confinement, Jonathan S. Shapiro, 2006/05/01
    - Use Cases for Encapsulation and Identification, Jonathan S. Shapiro, 2006/05/01
    - Re: Use Cases for Encapsulation and Identification, Marcus Brinkmann, 2006/05/01
    - Re: Use Cases for Encapsulation and Identification, Jonathan S. Shapiro, 2006/05/01
    - Re: Use Cases for Encapsulation and Identification, Jonathan S. Shapiro, 2006/05/01
    - Re: Use Cases for Encapsulation and Identification, Pierre THIERRY, 2006/05/01
    - Re: Use Cases for Encapsulation and Identification, Pierre THIERRY, 2006/05/01
    - Re: Challenge: Find potential use cases for non-trivial confinement, Pierre THIERRY, 2006/05/01
    - Re: Challenge: Find potential use cases for non-trivial confinement, olafBuddenhagen, 2006/05/01

Prev by Date: Re: bit-split, or: the schizophrenia of trusted computing
Next by Date: Re: Challenge: Find potential use cases for non-trivial confinement
Previous by thread: Re: Challenge: Find potential use cases for non-trivial confinement
Next by thread: Re: Challenge: Find potential use cases for non-trivial confinement
Index(es):
- Date
- Thread