CapDesk

CapDesk

CapDesk is a desktop environment that rigorously applies the Principle of least authority, in order to provide security for the user when running applications.

Under CapDesk, applications are run with minimal authority, so that an application does not have access to a given file or directory until the user explicitly grants the application the right to access it.

CapDesk is a research system that aims to show that this does not reduce the usability of the system. On the contrary; CapDesk's user interface is quite conventional from the user's point of view. Standard GUI mechanisms such as opening a file or using a file chooser are the basis for granting access rights to applications.

CapDesk was the first system to implement a Powerbox file chooser.

CapDesk is written in the E programming language, which in turn is currently implemented in Java.

Caplet

In the CapDesk desktop environment, a caplet is a program that starts off with no authority beyond the ability to interact with the user via a window and to request capabilities via a powerbox.

The term is a pun on applet, combining the term with "cap" which is short for "capability".

Applets such as Java applets often have no non-trivial use, because they do not have—and more importantly, cannot be granted—useful authority, such as the ability to save a file to the user's filesystem. In contrast, caplets are more useful, because they can request and be granted authority in a fine-grained but secure way.

ee also

*HP Polaris (computer security), a similar system, for running Windows applications
*Bitfrost

External links

* [http://www.combex.com/papers/darpa-review/index.html A Security Analysis of the Combex DarpaBrowser Architecture] , David Wagner and Dean Tribble, March 4, 2002
* [http://www.combex.com/tech/edesk.html E and CapDesk]


Wikimedia Foundation. 2010.

Игры ⚽ Нужна курсовая?

Look at other dictionaries:

  • HP Polaris (computer security) — Polaris is a Microsoft Windows system for running application software with limited authority.Configuring an application to run under Polaris is known as polarizing it. This creates a pet , an instance of the application which is isolated from… …   Wikipedia

  • Confused deputy problem — A confused deputy is a computer program that is innocently fooled by some other party into misusing its authority. It is a specific type of privilege escalation. In information security, the confused deputy problem is often cited as an example of …   Wikipedia

  • Caplet — can refer to one of the following:*Interest rate cap and floor *Tablet, a smooth, coated, oval shaped medicinal tablet in the shape of a capsule. *Caplet (computer security), a kind of applet, used in the CapDesk desktop environment. *André… …   Wikipedia

  • E (programming language) — Infobox programming language name = E logo = paradigm = multi paradigm: object oriented, distributed year = 1997 designer = Mark S. Miller developer = latest release version = latest release date = typing = strong, dynamic implementations = E on… …   Wikipedia

  • Marc Stiegler — Contents 1 Bibliography 1.1 Books 1.2 Collection 1.3 Anthologies containing storie …   Wikipedia

  • Coyotos — is a capability based security focused microkernel operating system developed by The EROS Group, LLC.[1] It is a successor to the EROS system that was created at the University of Pennsylvania and Johns Hopkins University. History Coyotos is… …   Wikipedia

  • Petname — Infobox Software name = Petname caption = Petname developer = Tyler Close latest release version = 0.18 latest release date = Nov 4, 2006 operating system = Cross platform genre = Mozilla extension license = ? website =… …   Wikipedia

  • Object-capability model — The object capability model is a computer security model based on the Actor model of computation. The name object capability model is due to the idea that the capability to perform an operation can be obtained by the following combination: an… …   Wikipedia

  • Bitfrost — Infobox Software name = Bitfrost caption = developer = Ivan Krstić latest release version = latest release date = operating system = Linux genre = Privacy, Antivirus license = GNU General Public License website = Bitfrost is the security design… …   Wikipedia

  • Plash — infobox software name = Plash latest release version = 1.19 Anxious Albert latest release date = release date|2008|05|05 programming language = C, Python operating system = Linux license = GNU Lesser General Public License website =… …   Wikipedia

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”