Write a Blog >>
Sun 22 - Fri 27 October 2017 Vancouver, Canada
Tue 24 Oct 2017 15:30 - 16:00 at Cavendish - Session 3

In object capability systems, attenuating objects give secure access to some, but not all capabilities of another object. One such example, is restricted (DOM) tree access, where an attenuating object allows reading and writing the properties of nodes, but only up to a certain hight in the tree.

We will present a specification of this example, employing the concepts of permission and authority, the concept of domination, in terms of Hoare triples and invariants. We will outline how we can show that execution of unknown code whose access to the tree can only go through attenuating objects is guaranteed not to affect the properties of nodes which are beyond the height of these attenuating objects.

Tue 24 Oct

15:30 - 17:00: OCAP 2017 - Session 3 at Cavendish
ocap-2017150885180000015:30 - 16:00
ocap-2017150885360000016:00 - 17:00