[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Thoughts on the draft

At 10:34 AM 8/29/96 -0400, Angelos D. Keromytis wrote:
>In message <199608282138.QAA16422@entropy.sbc.com>, "Brian M. Thomas" writes:
>>The philosophy we have been espousing is that every privilege is
>>explicitly issued by one principal to another.  Yes, this does cause
>>certificates to proliferate, but we tend to like this, because it more
>>closely constrains the meaning of each certificate.
>It all comes down to that then. I wonder how the rest of the group
>feels about it. I can see pros and cons in it, so maybe some rough
>poll is in order ?

I have always been in favor of fine grained security.  I do accept the
practical limit of storing and checking the associated security tokens. 
Fine grained security also helps protect against, detect, and locate bugs. 

Bill Frantz       | Cave ab homine unius lebri | Periwinkle -- Consulting
(408)356-8506     |  [Beware the man of one    | 16345 Englewood Ave.
frantz@netcom.com |   book]  - Anonymous Latin | Los Gatos, CA 95032, USA