[ge-talk] Security services provided by OS
Danny Robson
danny at blubinc.com
Tue Jan 9 14:14:25 EST 2007
Zenja Solaja wrote:
> Protection #2 (prevent application from destroying files) actually has a
> very simple solution which no OS really uses, which is quite puzzling.
> Simply restrict the application from only modifying files in its current
> directory or lower, but never higher.
A slightly more hardcore approach which I kind of like is that of
Solaris Zones, essentially a similar though much more lightweight
approach to virtualisation.
What protection #2 seems to lead to, at least in my mind, is basically
giving each application a rather small, spartan system on which to run.
Why not extend this to virtualising the hardware, or pretty much any
resource which we have access to? Each application can have it's own
private data store in it's own space and mount any public stores for
globally visible data.
If we get virtualisation correct then you've limited the potential scope
for breaches quite a lot, IMHO.
- Danny
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 252 bytes
Desc: OpenPGP digital signature
Url : http://www.bug-br.org.br/pipermail/glasselevator-talk/attachments/20070110/98485152/attachment.bin
More information about the glasselevator-talk
mailing list