scholar.google.com
A slashdot post pointed out the new service scholar.google.com. This looks promising. A quick search on "capabilities security" resulted in a bunch of relevant material - in contrast to a regular web search where informations about capabilities is pretty sparse.
I'm not yet sure, if capabilities are a practical approach to security (for web applications) in a world fixed on access control lists. Especially capabilities in a distributed environment seems to be non-trivial. So far capabilities seem to be more straight and easier to implement than ACL systems and very dynamic access systems (e.g. (W)CM system where documents are constantly moving from editors to approved and back and forth until they find their resting place in the archive) feel quite natural if you just pass around capabilities.
So I still have to investigate this matter, but Google is once again a great help.
- Written on November, 18 2004 at 20:58
You are reading the (archived) weblog of Benjamin Niemann. This weblog has been closed, no new articles will be posted here.
If you can read german, you may have a look at my new weblog.