From mboxrd@z Thu Jan  1 00:00:00 1970
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
	ip-172-31-74-118.ec2.internal
X-Spam-Level: 
X-Spam-Status: No, score=-0.0 required=3.0 tests=BAYES_40 autolearn=ham
	autolearn_force=no version=3.4.6
Path: eternal-september.org!reader02.eternal-september.org!.POSTED!not-for-mail
From: Doctor Who <doc@tardis.org>
Newsgroups: comp.lang.ada
Subject: Re: The Ravenscar profile and capabilities paradigm
Date: Tue, 12 Oct 2021 04:29:42 +0200
Organization: A noiseless patient Spider
Message-ID: <1ls9mg5g8klqjqbclgb10dhj3gpvotj0h4@4ax.com>
References: <07f8mgdot9tmh8mqen2ogd5dds2gojoleh@4ax.com> <sk1iuf$p1r$1@gioia.aioe.org> <bt39mgle1it9naiafoe0jprc5sd1lr3kku@4ax.com> <sk23qn$11it$1@gioia.aioe.org> <r959mg5q5h9u78stmi63ndq1u4lct9in1l@4ax.com> <sk2ltu$170a$1@gioia.aioe.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Injection-Info: reader02.eternal-september.org; posting-host="029ba4d39744cc2f920d1f90b5831eec";
	logging-data="13170"; mail-complaints-to="abuse@eternal-september.org";	posting-account="U2FsdGVkX18iTTppE1WWH6/PbPW0N7Yj"
User-Agent: ForteAgent/8.00.32.1272
Cancel-Lock: sha1:aLjHPA9VHlsfUWNAuNii6I0oA4M=
Xref: reader02.eternal-september.org comp.lang.ada:62965
List-Id: <comp.lang.ada>

On Tue, 12 Oct 2021 01:45:40 +0100, "Luke A. Guest"
<laguest@archeia.com> wrote:

>On 11/10/2021 20:50, Doctor Who wrote:
>> On Mon, 11 Oct 2021 20:36:46 +0100, "Luke A. Guest"
>> <laguest@archeia.com> wrote:
>> 
>>> On 11/10/2021 20:25, Doctor Who wrote:
>>>> On Mon, 11 Oct 2021 15:48:37 +0100, "Luke A. Guest"
>>>> <laguest@archeia.com> wrote:
>>>>
>>>>> On 11/10/2021 14:33, Doctor Who wrote:
>>>>>> Hello,
>>>>>> someone knows how to introduce the capabilities paradigm in Ada,
>>>>>> specifically for programs written using the Ravenscar profile ?
>>>>>>
>>>>>>
>>>>>
>>>>> Capabilities are just a set of operations that an object / user can
>>>>> perform, or not. So, it's merely a bitset. A bitset which can form
>>>>> derived bitsets.
>>>>>
>>>>
>>>> no it is another thing,
>>>> https://en.wikipedia.org/wiki/Capability-based_security
>>>>
>>>
>>> I know what it is. It is still a set of bits, or, permissions, or
>>> capabilities. The capabilities are usually provided by the OS services.
>>>
>>> But as you didn't specify whether you wanted to map onto an existing OS'
>>> capabilities or if you wanted to implement your own, I went with the latter.
>> 
>> there isn't any existing OS that provides capability-security from the
>> ground up, I intend to implement my own.
>> 
>
>CapOS/KeyOS don't exist then?
>
>Windows has capabilities.
>
>Pretty sure iOS has them too.


only CapROS at the moment, KeyKOS only survives as an ancestor
reference to CapROS and Coyotos.

But Coyotos development has been sleeping for years now, and CapROS is
starting to revive only now.

But yes, I would chose CapROS now.