[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Thoughts on the draft
At 10:34 AM 8/29/96 -0400, Angelos D. Keromytis wrote:
>In message <199608282138.QAA16422@entropy.sbc.com>, "Brian M. Thomas" writes:
>>The philosophy we have been espousing is that every privilege is
>>explicitly issued by one principal to another. Yes, this does cause
>>certificates to proliferate, but we tend to like this, because it more
>>closely constrains the meaning of each certificate.
>>
>It all comes down to that then. I wonder how the rest of the group
>feels about it. I can see pros and cons in it, so maybe some rough
>poll is in order ?
I have always been in favor of fine grained security. I do accept the
practical limit of storing and checking the associated security tokens.
Fine grained security also helps protect against, detect, and locate bugs.
YMMV.
-------------------------------------------------------------------------
Bill Frantz | Cave ab homine unius lebri | Periwinkle -- Consulting
(408)356-8506 | [Beware the man of one | 16345 Englewood Ave.
frantz@netcom.com | book] - Anonymous Latin | Los Gatos, CA 95032, USA