Author:
Cohen Ellis,Jefferson David
Abstract
This paper describes the capability based protection mechanisms provided by the Hydra Operating System Kernel. These mechanisms support the construction of user-defined protected subsystems, including file and directory subsystems, which do not therefore need to be supplied directly by Hydra. In addition, we discuss a number of well known protection problems, including Mutual Suspicion, Confinement and Revocation, and we present the mechanisms that Hydra supplies in order to solve them.
Publisher
Association for Computing Machinery (ACM)
Reference23 articles.
1. Cohen E. Modelling Protection Ph. D. thesis Carnegie-Mellon University (to appear). Cohen E. Modelling Protection Ph. D. thesis Carnegie-Mellon University (to appear).
2. SIMULA: an ALGOL-based simulation language
3. Dingwall T. J. Communication within Structured Operating Systems Cornell University Computer Science Dept. TR 73-167 May 1973. Dingwall T. J. Communication within Structured Operating Systems Cornell University Computer Science Dept. TR 73-167 May 1973.
4. Capability-based addressing
Cited by
12 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献
1. Pocket: ML Serving from the Edge;Proceedings of the Eighteenth European Conference on Computer Systems;2023-05-08
2. Memory-Side Protection With a Capability Enforcement Co-Processor;ACM Transactions on Architecture and Code Optimization;2019-03-08
3. HATI: Hardware Assisted Thread Isolation for Concurrent C/C++ Programs;2014 IEEE International Parallel & Distributed Processing Symposium Workshops;2014-05
4. A taste of Capsicum;Communications of the ACM;2012-03
5. An Access Control Model for a Parallel Object-Based Programming Language;Security for Object-Oriented Systems;1994