Groups
Sign in
Groups
cap-talk
Conversations
About
Send feedback
Help
cap-talk
Contact owners and managers
1–30 of 464
Mark all as read
Report group
0 selected
Alan Karp
Apr 3
Certificate capability system when nodes can't sign
I've been lurking on the Distributed Web Node (DWN) working group meetings. A DWN is a set of
unread,
Certificate capability system when nodes can't sign
I've been lurking on the Distributed Web Node (DWN) working group meetings. A DWN is a set of
Apr 3
Mark S. Miller
Mar 14
Fwd: Opportunity in Usable Security: Applications wanted for the Norm Hardy Prize
---------- Forwarded message --------- From: Foresight Intelligent Cooperation Group <foresight-
unread,
Fwd: Opportunity in Usable Security: Applications wanted for the Norm Hardy Prize
---------- Forwarded message --------- From: Foresight Intelligent Cooperation Group <foresight-
Mar 14
Alan Karp
Feb 26
Expressing policies in capability systems
Rich Authorization Request extension to OAuth 2 is a way to express access policies in a capability
unread,
Expressing policies in capability systems
Rich Authorization Request extension to OAuth 2 is a way to express access policies in a capability
Feb 26
Pierre Thierry
, …
Alan Karp
5
Feb 15
The necessity for delegation
On Wed, Feb 14, 2024 at 9:03 PM Pierre Thierry <kep...@gmail.com> wrote: Le lundi 5 février
unread,
The necessity for delegation
On Wed, Feb 14, 2024 at 9:03 PM Pierre Thierry <kep...@gmail.com> wrote: Le lundi 5 février
Feb 15
Alan Karp
Feb 14
Fwd: HTTP Message Signatures is now RFC 9421
The key phrase is, "like Authorization Capabilities (ZCAPs), that make use of this specification
unread,
Fwd: HTTP Message Signatures is now RFC 9421
The key phrase is, "like Authorization Capabilities (ZCAPs), that make use of this specification
Feb 14
Raoul Duke
, …
Mark S. Miller
4
Feb 12
web cors alternative advocacy
At tc39 (the JavaScript committee) altogether, we have a great track record of arguing things out on
unread,
web cors alternative advocacy
At tc39 (the JavaScript committee) altogether, we have a great track record of arguing things out on
Feb 12
Alan Karp
Feb 6
Talk: Secure by Design
Do you think he'll mention capabilities? “Secure by Design: CISA's Plan to Foster Tech
unread,
Talk: Secure by Design
Do you think he'll mention capabilities? “Secure by Design: CISA's Plan to Foster Tech
Feb 6
Raoul Duke
Feb 6
on concurrency
hi, i think i like this paper. so far. concurrency feels like it comes up often enough in the cap-
unread,
on concurrency
hi, i think i like this paper. so far. concurrency feels like it comes up often enough in the cap-
Feb 6
Alan Karp
, …
Tony Arcieri
3
Feb 6
A project using Macaroons
On Sun, Feb 4, 2024 at 1:40 PM Baldur Jóhannsson <zaru...@gmail.com> wrote: Hmm... they
unread,
A project using Macaroons
On Sun, Feb 4, 2024 at 1:40 PM Baldur Jóhannsson <zaru...@gmail.com> wrote: Hmm... they
Feb 6
Alan Karp
,
David Nicol
2
Jan 13
Who came up with the term
of course not, unless you can demonstrate a policy-valid need to know. ha ha On Fri, Jan 12, 2024 at
unread,
Who came up with the term
of course not, unless you can demonstrate a policy-valid need to know. ha ha On Fri, Jan 12, 2024 at
Jan 13
Stewart Webb
12/17/23
OS caps x ocap languages masters thesis complete
Hi all, Some of you here may be interested in the Masters thesis I finally completed last year,
unread,
OS caps x ocap languages masters thesis complete
Hi all, Some of you here may be interested in the Masters thesis I finally completed last year,
12/17/23
Alan Karp
, …
Matt Rice
13
11/11/23
Sealer/unsealer with capability certificates
On Thu, Nov 9, 2023 at 9:41 AM Mark S. Miller <eri...@gmail.com> wrote: > > A comparison
unread,
Sealer/unsealer with capability certificates
On Thu, Nov 9, 2023 at 9:41 AM Mark S. Miller <eri...@gmail.com> wrote: > > A comparison
11/11/23
Alan Karp
11/10/23
Fwd: Alin Tomescu on Nov 16 -- UTT: Sensibly-Anonymous Decentralized Payments from Rerandomizable Signatures
Nothing about capabilities, but I believe some of you are interested in e-cash. The talks in this
unread,
Fwd: Alin Tomescu on Nov 16 -- UTT: Sensibly-Anonymous Decentralized Payments from Rerandomizable Signatures
Nothing about capabilities, but I believe some of you are interested in e-cash. The talks in this
11/10/23
Raoul Duke
10/24/23
rebooting might not be enough
> Rebooting was found to be ineffective to clear erroneous behavior, and only partially effective
unread,
rebooting might not be enough
> Rebooting was found to be ineffective to clear erroneous behavior, and only partially effective
10/24/23
Alan Karp
10/9/23
Things get complicated if you don't use capabilities
AWS has a confused deputy problem with its use of roles. This medium post describes how they propose
unread,
Things get complicated if you don't use capabilities
AWS has a confused deputy problem with its use of roles. This medium post describes how they propose
10/9/23
Tony Arcieri
10/3/23
Confused deputy-esque attack: sudo logrotate
https://joshua.hu/gaining-root-with-logrotate-sudo-ubuntu -- Tony Arcieri
unread,
Confused deputy-esque attack: sudo logrotate
https://joshua.hu/gaining-root-with-logrotate-sudo-ubuntu -- Tony Arcieri
10/3/23
Alan Karp
, …
Mark S. Miller
10
10/2/23
Certificate capabilities using symmetric keys
Of historic interest (only?): http://erights.org/elib/distrib/captp/unibus.html But only for online
unread,
Certificate capabilities using symmetric keys
Of historic interest (only?): http://erights.org/elib/distrib/captp/unibus.html But only for online
10/2/23
Matt Rice
, …
Christine Lemmer-Webber
9
10/2/23
Negative capabilities
Ah, ok. If the issue is another voluntary oblivious compliance example, then yes it could work. Alan
unread,
Negative capabilities
Ah, ok. If the issue is another voluntary oblivious compliance example, then yes it could work. Alan
10/2/23
Christopher Allen
, …
Alan Karp
4
9/29/23
Article: Least & Necessary (from: Musing of a Trust Architect)
There's an old saying, "with privilege comes responsibility." We give you lots of
unread,
Article: Least & Necessary (from: Musing of a Trust Architect)
There's an old saying, "with privilege comes responsibility." We give you lots of
9/29/23
Dan Connolly
9/21/23
vat upgrade in production: Agoric smart wallet supports NFTs
#49 Upgrade Smart Wallet to support NFTs just completed, in block 11731339 on the Agoric production
unread,
vat upgrade in production: Agoric smart wallet supports NFTs
#49 Upgrade Smart Wallet to support NFTs just completed, in block 11731339 on the Agoric production
9/21/23
Alan Karp
9/8/23
Verifiable credentials as capabilities
Yes, this one has reared its ugly head again. I've put a draft of what my intended response below
unread,
Verifiable credentials as capabilities
Yes, this one has reared its ugly head again. I've put a draft of what my intended response below
9/8/23
Raoul Duke
7/25/23
ot: random elisp factoid
did not know this existed & is built-in. https://www.gnu.org/software/emacs/manual/html_node/
unread,
ot: random elisp factoid
did not know this existed & is built-in. https://www.gnu.org/software/emacs/manual/html_node/
7/25/23
Raoul Duke
, …
Matt Rice
8
7/23/23
Creeper: a tool for detecting permission creep in file system access controls | Cybersecurity | Full Text
On Sat, Jul 22, 2023 at 10:27 PM Alan Karp <alan...@gmail.com> wrote: > > On Sat, Jul
unread,
Creeper: a tool for detecting permission creep in file system access controls | Cybersecurity | Full Text
On Sat, Jul 22, 2023 at 10:27 PM Alan Karp <alan...@gmail.com> wrote: > > On Sat, Jul
7/23/23
Alan Karp
,
Matt Rice
6
7/17/23
Designating the resource in an invocation
On Fri, Jul 14, 2023 at 4:46 PM Matt Rice <rat...@gmail.com> wrote: Ouch, only looking at
unread,
Designating the resource in an invocation
On Fri, Jul 14, 2023 at 4:46 PM Matt Rice <rat...@gmail.com> wrote: Ouch, only looking at
7/17/23
Alan Karp
6/23/23
Publishing opportunity
https://www.springeropen.com/collections/tdispt Although the title doesn't sound interesting to
unread,
Publishing opportunity
https://www.springeropen.com/collections/tdispt Although the title doesn't sound interesting to
6/23/23
William ML Leslie
, …
Mike Stay
3
6/7/23
A playlist
Maybe some Pony vids? https://www.youtube.com/watch?v=u1JfYa413fY https://www.youtube.com/watch?v=
unread,
A playlist
Maybe some Pony vids? https://www.youtube.com/watch?v=u1JfYa413fY https://www.youtube.com/watch?v=
6/7/23
Alan Karp
, …
Rob Meijer
13
5/22/23
Here's what I told the DWN people
Yes it does. Thanks for explaining so clearly. -------------- Alan Karp On Sun, May 21, 2023 at 8:11
unread,
Here's what I told the DWN people
Yes it does. Thanks for explaining so clearly. -------------- Alan Karp On Sun, May 21, 2023 at 8:11
5/22/23
Alan Karp
5/18/23
Another DWN write-up
Like UCAN, DWN allows wildcard capabilities. For example, Alice can give Bob access to everything in
unread,
Another DWN write-up
Like UCAN, DWN allows wildcard capabilities. For example, Alice can give Bob access to everything in
5/18/23
Alan Karp
,
Mark S. Miller
3
5/18/23
Capability revocation
That's my understanding. -------------- Alan Karp On Thu, May 18, 2023 at 11:38 AM Mark S. Miller
unread,
Capability revocation
That's my understanding. -------------- Alan Karp On Thu, May 18, 2023 at 11:38 AM Mark S. Miller
5/18/23
randy....@pobox.com
4/12/23
Spritely Institute's new Causeway-inspired debugger
We took the ideas of Causeway and created live debugging tooling with time-travel! https://spritely.
unread,
Spritely Institute's new Causeway-inspired debugger
We took the ideas of Causeway and created live debugging tooling with time-travel! https://spritely.
4/12/23