From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on ip-172-31-74-118.ec2.internal X-Spam-Level: X-Spam-Status: No, score=-0.9 required=3.0 tests=BAYES_00,FORGED_GMAIL_RCVD, FREEMAIL_FROM autolearn=no autolearn_force=no version=3.4.6 Path: eternal-september.org!reader02.eternal-september.org!aioe.org!mRBVMlGoFUnDsRgMYRJiSw.user.46.165.242.75.POSTED!not-for-mail From: Richard Iswara Newsgroups: comp.lang.ada Subject: Re: The Ravenscar profile and capabilities paradigm Date: Tue, 12 Oct 2021 12:17:00 +0700 Organization: Aioe.org NNTP Server Message-ID: References: <07f8mgdot9tmh8mqen2ogd5dds2gojoleh@4ax.com> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit Injection-Info: gioia.aioe.org; logging-data="48321"; posting-host="mRBVMlGoFUnDsRgMYRJiSw.user.gioia.aioe.org"; mail-complaints-to="abuse@aioe.org"; User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Thunderbird/78.14.0 Content-Language: en-US X-Notice: Filtered by postfilter v. 0.9.2 Xref: reader02.eternal-september.org comp.lang.ada:62969 List-Id: On 12/10/2021 02.50, Doctor Who wrote: > On Mon, 11 Oct 2021 20:36:46 +0100, "Luke A. Guest" > wrote: > >> On 11/10/2021 20:25, Doctor Who wrote: >>> On Mon, 11 Oct 2021 15:48:37 +0100, "Luke A. Guest" >>> wrote: >>> >>>> On 11/10/2021 14:33, Doctor Who wrote: >>>>> Hello, >>>>> someone knows how to introduce the capabilities paradigm in Ada, >>>>> specifically for programs written using the Ravenscar profile ? >>>>> >>>>> >>>> >>>> Capabilities are just a set of operations that an object / user can >>>> perform, or not. So, it's merely a bitset. A bitset which can form >>>> derived bitsets. >>>> >>> >>> no it is another thing, >>> https://en.wikipedia.org/wiki/Capability-based_security >>> >> >> I know what it is. It is still a set of bits, or, permissions, or >> capabilities. The capabilities are usually provided by the OS services. >> >> But as you didn't specify whether you wanted to map onto an existing OS' >> capabilities or if you wanted to implement your own, I went with the latter. > > there isn't any existing OS that provides capability-security from the > ground up, I intend to implement my own. > seL4? The whitepaper includes the proofs also.