-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Jonathan S. Shapiro schrieb: > Translucent storage does not undermine confinement at all, so your > supposition is mistaken.
But there is no constructor needed to confine a program. So confinement is not a property of the constructor at all, now. As I understand it, the constructor serves as a trusted "mediator", that allows to check the confinedness without constructing the process (in non-translucent designs), that is, to run a program that is untrusted without risking leakage, and without inspecting it. - -- - -ness- -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFFp54svD/ijq9JWhsRAj0OAJ9QLMwqHHXFcRzB3SJbI9Gi1IIQIACfW9BV ypqR61mBz+hHZViC0hpa1gE= =s/vz -----END PGP SIGNATURE----- _______________________________________________ L4-hurd mailing list [email protected] http://lists.gnu.org/mailman/listinfo/l4-hurd
