- Object can have (PDX) type:
- has PDX capabilities,
- registered set of entry points,
- an associated PDX clist.
- Owner's APD changes for the duration of the call
- Allows secure invocation of an object in a PD different from
caller's
- Discretionary access control validates entry points and
invocation right
|
