cap-talk

1–30 of 339

0 selected

Mark S. Miller, Tony Arcieri2

Jun 15

"New TLS Attack Lets Attackers Launch Cross-Protocol Attacks Against Secure Sites"

It's ultimately making the case for things like ALPN and SNI. Although there's much simpler

unread,

"New TLS Attack Lets Attackers Launch Cross-Protocol Attacks Against Secure Sites"

It's ultimately making the case for things like ALPN and SNI. Although there's much simpler

Jun 15

Alan Karp, Mark S. Miller3

Jun 14

You don't need delegation; it is very useful, though.

Some of you know the perpetrator, so I prefer to preserve the person's anonymity. --------------

unread,

You don't need delegation; it is very useful, though.

Some of you know the perpetrator, so I prefer to preserve the person's anonymity. --------------

Jun 14

Dan Finlay, … Mark S. Miller102

Jun 14

Google's Fuscia OS, a "Capability based OS", Begins Rolling Out Today

On Mon, Jun 14, 2021 at 10:11 AM 'Ben Laurie' via cap-talk <cap-talk@googlegroups.com>

unread,

Google's Fuscia OS, a "Capability based OS", Begins Rolling Out Today

On Mon, Jun 14, 2021 at 10:11 AM 'Ben Laurie' via cap-talk <cap-talk@googlegroups.com>

Jun 14

Carl Hewitt Twitter: ProfCarlHewitt

Jun 10

With regard to previous discussion here. There is an ongoing discussion of what to call less-well-

unread,

With regard to previous discussion here. There is an ongoing discussion of what to call less-well-

Jun 10

Christopher Lemmer Webber, Mike Stay3

Jun 7

Deprecating bearer-based sturdyrefs or no?

On Mon, Jun 7, 2021 at 12:17 PM Christopher Lemmer Webber <cwebber@dustycloud.org> wrote:

unread,

Deprecating bearer-based sturdyrefs or no?

On Mon, Jun 7, 2021 at 12:17 PM Christopher Lemmer Webber <cwebber@dustycloud.org> wrote:

Jun 7

Carl Hewitt Twitter: ProfCarlHewitt

Jun 5

Generality of SealerUnsealer

At FriAM, Mike asked about the generality of SealerUnsealer. Consider a case where x is to be shared

unread,

Generality of SealerUnsealer

At FriAM, Mike asked about the generality of SealerUnsealer. Consider a case where x is to be shared

Jun 5

John Lee, … Mark S. Miller69

Jun 3

On Thu, Jun 3, 2021 at 6:03 PM Ian Denhardt <ian@zenhack.net> wrote: Quoting 'Mark S.

unread,

On Thu, Jun 3, 2021 at 6:03 PM Ian Denhardt <ian@zenhack.net> wrote: Quoting 'Mark S.

Jun 3

Valerio Bellizzomi

May 27

W3C Verifiable Credentials

Verifiable Credentials Implementation Guidelines 1.0 Implementation guidance for Verifiable

unread,

W3C Verifiable Credentials

Verifiable Credentials Implementation Guidelines 1.0 Implementation guidance for Verifiable

May 27

Valerio Bellizzomi

May 27

Linux confused deputy

Link from Phoronix https://www.phoronix.com/scan.php?page=news_item&px=Linux-Confused-Deputy-2.6.

unread,

Linux confused deputy

Link from Phoronix https://www.phoronix.com/scan.php?page=news_item&px=Linux-Confused-Deputy-2.6.

May 27

David Nicol, … Jonathan S. Shapiro14

May 27

use cases for distinguishing between read access and existence-checking access

On Wed, May 26, 2021 at 11:36 AM Raoul Duke <raould@gmail.com> wrote: (would uuids be better

unread,

use cases for distinguishing between read access and existence-checking access

On Wed, May 26, 2021 at 11:36 AM Raoul Duke <raould@gmail.com> wrote: (would uuids be better

May 27

Alan Karp, Christopher Lemmer Webber2

May 20

A capability proposal from the verifiable credentials community

Alan Karp writes: > https://hyperonomy.com/2021/04/26/the-verifiable-economy-architecture-

unread,

A capability proposal from the verifiable credentials community

Alan Karp writes: > https://hyperonomy.com/2021/04/26/the-verifiable-economy-architecture-

May 20

Tony Arcieri, Alan Karp2

May 14

Ambient authority in Rust's procedural macros

There's been discussion of this topic on the Rust forum. The problem is not limited to macros;

unread,

Ambient authority in Rust's procedural macros

There's been discussion of this topic on the Rust forum. The problem is not limited to macros;

May 14

Alan Karp, John Kemp2

Apr 22

Anybody know about biscuitsec?

No, but more: https://www.clever-cloud.com/blog/engineering/2021/04/12/introduction-to-biscuit/

unread,

Anybody know about biscuitsec?

No, but more: https://www.clever-cloud.com/blog/engineering/2021/04/12/introduction-to-biscuit/

Apr 22

Christopher Lemmer Webber, … btu...@gmail.com19

Apr 15

Confused deputies as "failures of judgement"

I believe I coined the phrase commingled (two m's btw) authority in discussion with MarkM a while

unread,

Confused deputies as "failures of judgement"

I believe I coined the phrase commingled (two m's btw) authority in discussion with MarkM a while

Apr 15

Alan Karp, … Jonathan S. Shapiro16

Apr 12

OAuth 2.0 and OpenID Connect (in plain English)

On Mon, Apr 12, 2021 at 12:22 AM Neil Madden <neil.madden@forgerock.com> wrote: WebFinger is

unread,

OAuth 2.0 and OpenID Connect (in plain English)

On Mon, Apr 12, 2021 at 12:22 AM Neil Madden <neil.madden@forgerock.com> wrote: WebFinger is

Apr 12

Alan Karp, … zaru...@gmail.com40

Mar 22

Opaque vs non-opaque capabilities

One idea I came up with last friam was to offer an attenuator function as mobile code. Such a

unread,

Opaque vs non-opaque capabilities

One idea I came up with last friam was to offer an attenuator function as mobile code. Such a

Mar 22

Mar 20

a demo of permissions heck

C. Webber > A much more important and useful job to me is figuring out how to build things where

unread,

a demo of permissions heck

C. Webber > A much more important and useful job to me is figuring out how to build things where

Mar 20

Carl Hewitt, … Mark S. Miller33

Mar 19

More rigorous statement of Laws of Locaity

yes On Fri, Mar 19, 2021 at 2:04 PM Matt Rice <ratmice@gmail.com> wrote: If I may try and

unread,

More rigorous statement of Laws of Locaity

yes On Fri, Mar 19, 2021 at 2:04 PM Matt Rice <ratmice@gmail.com> wrote: If I may try and

Mar 19

Neil Madden, … Alan Karp14

Mar 17

Totally safe transmute

A tamed library was needed for both Java (Joe-E) and JavaScript (Caja). Why would Rust be any

unread,

Totally safe transmute

A tamed library was needed for both Java (Joe-E) and JavaScript (Caja). Why would Rust be any

Mar 17

Ian Denhardt, … Alan Karp4

Mar 17

Rambling pontification on why capabilities are effective.

A really nice post that should be more widely distributed, but I must be missing something. Your

unread,

Rambling pontification on why capabilities are effective.

A really nice post that should be more widely distributed, but I must be missing something. Your

Mar 17

Mar 11

Re: OCap in the real world!!!

I forgot to mention cap-talk@googlegroups.com. Are you on it? It's low volume with spurts of

unread,

Re: OCap in the real world!!!

I forgot to mention cap-talk@googlegroups.com. Are you on it? It's low volume with spurts of

Mar 11

Christopher Lemmer Webber

Mar 5

Sealers/unsealer/brand in 3 lines of Racket

I showed this off on a call today and it looked like some people hadn't seen this approach before

unread,

Sealers/unsealer/brand in 3 lines of Racket

I showed this off on a call today and it looked like some people hadn't seen this approach before

Mar 5

Christopher Lemmer Webber, … Carl Hewitt152

Mar 4

Best formal backing for ocap security?

Thanks Mike! In practice, the Actor SpeedUp Theorem is more important than what can be theoretically

unread,

Best formal backing for ocap security?

Thanks Mike! In practice, the Actor SpeedUp Theorem is more important than what can be theoretically

Mar 4

Mar 2

An Actor Application Can Be Hundreds of Times Faster Than a Parallel Lambda Expression

Communication between Turing Machines and between lambda-expressions was crucially omitted thereby

unread,

An Actor Application Can Be Hundreds of Times Faster Than a Parallel Lambda Expression

Communication between Turing Machines and between lambda-expressions was crucially omitted thereby

Mar 2

Christopher Lemmer Webber

Feb 21

FOSS browser extensions with malware

In a recent talk I quipped that of all we knew, event-stream could have been compliant with FOSS

unread,

FOSS browser extensions with malware

In a recent talk I quipped that of all we knew, event-stream could have been compliant with FOSS

Feb 21

Carl Hewitt, … mostawe...@gmail.com53

Feb 21

Mark's commentary on security issues needs to be made mathematically rigorous

Strong types are rigorously defined because there is just one model of the theory of strong types up

unread,

Mark's commentary on security issues needs to be made mathematically rigorous

Strong types are rigorously defined because there is just one model of the theory of strong types up

Feb 21

mostawe...@gmail.com, … Carl Hewitt8

Feb 16

Actors can only do poly work in poly time

The following Actor program attempts to loop within itself. In practice, the system will

unread,

Actors can only do poly work in poly time

The following Actor program attempts to loop within itself. In practice, the system will

Feb 16

Christopher Lemmer Webber, … Bill Frantz14

Feb 13

VatTP routing musings

Alan Karp writes: > Christopher Lemmer Webber <cwebber@dustycloud.org> wrote: > >>

unread,

VatTP routing musings

Alan Karp writes: > Christopher Lemmer Webber <cwebber@dustycloud.org> wrote: > >>

Feb 13

Christopher Lemmer Webber, … Bill Frantz7

Feb 11

Planning out OCapN URIs

On 2/11/21 at 3:09 PM, stable.pseudonym@gmail.com (John Kemp) wrote: >On Feb 11, 2021, at 2:41 PM,

unread,

Planning out OCapN URIs

On 2/11/21 at 3:09 PM, stable.pseudonym@gmail.com (John Kemp) wrote: >On Feb 11, 2021, at 2:41 PM,

Feb 11

Christopher Lemmer Webber, … Alan Karp5

Feb 11

David Nicol <davidnicol@gmail.com> wrote: If a conversation between two actors requires

unread,

David Nicol <davidnicol@gmail.com> wrote: If a conversation between two actors requires

Feb 11

Search

Clear search

Close search

Google apps

Main menu