A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2020; you can also visit the original URL.
The file type is application/pdf
.
A secure identity-based capability system
Proceedings. 1989 IEEE Symposium on Security and Privacy
We present the design of an Identity-based CAPability protection system ICAP, which is aimed at a distributed system in a network environment. The semantics of traditional capabilities are modified to incorporate subject identities. This enables the monitoring, mediating, and recording of capability propagations to enforce security policies. It also supports administrative activities such as traceability. We have developed an exception list approach to achieve rapid revocation and the idea of
doi:10.1109/secpri.1989.36277
dblp:conf/sp/Gong89
fatcat:htrfdghjmfge7mvn7pmtlqptqy