Fine-grained access control

• Code signing combined with access control makes complex trust models possible

  • complicates policy design and analysis

• Vendors all have different implementations

  • Netscape - object signing
  • Microsoft - security zones
  • JavaSoft - protection domains

• All three use stack inspection (more later)

Previous slide

Next slide

Back to first slide

View graphic version