[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [DotGNU]Signing Webservices ?
|
From: |
Norbert Bollow |
|
Subject: |
Re: [DotGNU]Signing Webservices ? |
|
Date: |
Sat, 26 Apr 2003 21:59:29 +0200 (CEST) |
James Michael DuPont <address@hidden> wrote:
> --- Norbert Bollow <address@hidden> wrote:
>>> 2. As to the validity of a function for execution, is is possible
>>> to make function calls that are checked by the dotgnu runtime?
>>
>> Do you mean IL verification, or do you mean checking digital
>> signatures on chunks of bytecode?
>
> I mean that the execution of one given function (lets say in c) would
> be checked for a person in a context.
>
> That means if you want to call printf, the system would check if you
> have permission to do so.
I think a per-function security model would be too fine-grained as
it'd overwhelm most application developers. We need something so
simple that even those who don't really care about security will use
it.
Greetings, Norbert.
--
Founder & Steering Committee member of http://gnu.org/projects/dotgnu/
Free Software Business Strategy Guide ---> http://FreeStrategy.info
Norbert Bollow, Weidlistr.18, CH-8624 Gruet (near Zurich, Switzerland)
Tel +41 1 972 20 59 Fax +41 1 972 20 69 http://norbert.ch