Advanced Operating Systems   COMP9242 2002/S2

UNSW

Printer-Friendly Version Administration                - Notices - Course Intro - Consultations # On-line Survey (closed) - Survey Results   Work - Lectures - Milestone 0 - Project Admin - Project Spec - Project FAQ - Exam   Documentation - ASysT Lab - L4 source browser - Sulima ISA Simulator - R4x00 ISA Summary  - MIPS R4700 Reference - MIPS R4000 User Manual  - Network Driver - GT64111   Related Info - Aurema OS Prize - OS Hall of Fame   History - 2000 - 1999 - 1998   Staff - Gernot Heiser (LiC)

Access matrix implementation: Capabilities Represent row-wise: capabilities Capability list associated with agent. Each capability confers a certain right to its holder. Propagation: copy capabilities between agents (how?) Restriction: lesser rights require new (``derived'') capabilities Revocation: requires invalidation of capabilities from all agents Amplification: special invocation capability. Accessibility: requires inspection of all capability lists (how?) Protection domain: explicit in capability list. Can have negative rights, to: reduce ``window of vulnerability'', simplify management of groups of capabilities. Successful commercial system: IBM System/38 et fils[Sol97] Popular among research distributed OS.