synit
/
synit-manual
1
0
Fork 0
Code Issues 2 Pull Requests Projects Releases Wiki Activity

Reference to Karp 2015 for examples of ocaps

This commit is contained in:
Tony Garnock-Jones 2022-03-03 17:26:53 +01:00
parent a9f673e4ae
commit 50b0ca7b16
1 changed files with 14 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
src/syndicated-actor-model.md
View File

@ -348,10 +348,10 @@ instance. The client remains blissfully unaware that anything untoward happened.
## Object-capabilities for access control
[Object capabilities](https://en.wikipedia.org/wiki/Object-capability_model) are the only
properly compositional way to secure a distributed system. They are a natural fit for
Actor-style systems, as demonstrated by E and its various descendants [[Miller 2006][], [Van
Cutsem et al 2007][], [Stiegler and Tie 2010][], [Yoo et al 2012][] and others], so it makes sense
that they would work well for the Syndicated Actor Model.
properly compositional way to secure a distributed system.[^justification-and-examples] They
are a natural fit for Actor-style systems, as demonstrated by E and its various descendants
[[Miller 2006][], [Van Cutsem et al 2007][], [Stiegler and Tie 2010][], [Yoo et al 2012][] and
others], so it makes sense that they would work well for the Syndicated Actor Model.
The main difference between SAM capabilities and those in E-style Actor models is that
syndicated capabilities express pattern-matching-based restrictions on the *assertions* that
@ -434,6 +434,11 @@ in Linda.” ACM TOPLAS 7, no. 1 (January 2, 1985): 80112.
Carriero. “Coordination Languages and Their Significance.” Communications of the ACM 35, no. 2
(February 1, 1992): 97107. [[DOI]](https://doi.org/10.1145/129630.129635)</span>
[Karp 2015]: #ref:karp-2015
[**Karp 2015**] <span id="ref:karp-2015">Karp, Alan H. “Access Control for IoT: A Position
Paper.” In IEEE Workshop on Security and Privacy for IoT. Washington, DC, USA, 2015.
[[PDF]](https://alanhkarp.com/publications/Access-Control-for-IoT.pdf)</span>
[Konieczny et al 2009]: #ref:konieczny-2009
[**Konieczny et al 2009**] <span id="ref:konieczny-2009">Konieczny, Eric, Ryan Ashcraft, David
Cunningham, and Sandeep Maripuri. “Establishing Presence within the Service-Oriented
@ -498,3 +503,8 @@ USENIX Annual Technical Conference. Boston, Massachusetts, 2012.
[^background-on-interests]: For more on assertions of interest, see
[here](https://syndicate-lang.org/about/#conversational-frames-conversational-knowledge) and
[here](https://syndicate-lang.org/tonyg-dissertation/html/#x_2_2_0_0_8).
[^justification-and-examples]: Karp [[2015][Karp 2015]] offers a good justification of this
claim along with a worked example of object-capabilities in a personal-computing setting.
The capabilities are ordinary E-style capabilities rather than SAM-style capabilities, but
the conclusions hold.