W3C home > Mailing lists > Public > public-webapps@w3.org > October to December 2009

Re: Scientific Literature on Capabilities (was Re: CORS versus Uniform Messaging?)

From: Ian Hickson <ian@hixie.ch>
Date: Fri, 18 Dec 2009 01:48:07 +0000 (UTC)
To: Kenton Varda <kenton@google.com>
Cc: Tyler Close <tyler.close@gmail.com>, public-webapps <public-webapps@w3.org>
Message-ID: <Pine.LNX.4.62.0912180056390.15825@hixie.dreamhostps.com>
On Thu, 17 Dec 2009, Kenton Varda wrote:
> On Thu, Dec 17, 2009 at 4:41 PM, Ian Hickson <ian@hixie.ch> wrote:
> > 
> > What one liner are your proposing that would solve the problem for 
> > XBL, XML data, videos, etc, all at once?
> 
> Are we debating about the state of existing infrastructure, or 
> theoretically ideal infrastructure? Honest question.  .htaccess is an 
> example of existing infrastructure built around the ACL approach.  If no 
> similarly-easy-to-use capability-based infrastructure exists, that 
> doesn't necessarily mean ACLs are theoretically better.  But the thread 
> subject line seems to suggest we're more interested in theory.

I'm interested in the practical impact of our specifications on authors. 
Those specifications have to be something that can be implemented; given 
the security model we're starting from, there's basically no way that can 
be an ideal anything.

-- 
Ian Hickson               U+1047E                )\._.,--....,'``.    fL
http://ln.hixie.ch/       U+263A                /,   _.. \   _\  ;`._ ,.
Things that are impossible just take longer.   `._.-(,_..'--(,_..'`-.;.'
Received on Friday, 18 December 2009 01:48:53 GMT

This archive was generated by hypermail 2.3.1 : Tuesday, 26 March 2013 18:49:35 GMT