MinorFs
From Erights
(→See also) |
|||
Line 1: | Line 1: | ||
- | MinorFs is a small set of user space (Fuse) file-systems that provides process level and pseudo-persistent-process level decomposable and (capability style) discretionary access control. MinorFs uses sparse capabilities to designate | + | MinorFs is a small set of user space (Fuse) file-systems that provides process level and pseudo-persistent-process level decomposable and (capability style) discretionary access control. MinorFs uses sparse capabilities to designate file-system sub-trees. MinorFs is a particular good fit for use together with the [[E language]] for the reason that the E Language supports the concept of pseudo-persistent-processes with its persistent-storage bound persistent VATs. These VATs could be stored in MinorFS to protect the E application from attacks from below. Next to this MinorFs allows the (persistent) delegation of sub-trees of the (initially private) per pseudo-persistent-process file-system storage directory tree, and the (non persistent) delegation of sub-trees of the (initially private) per process file-system storage directory tree. |
+ | == See also == | ||
+ | * [http://minorfs.polacanthus.net/wiki/MinorFs_and_E MinorFs and E] | ||
+ | * [[Walnut/Persistent Secure Distributed Computing]] | ||
+ | * [http://minorfs.polacanthus.net/wiki/MinorCapFS MinorCapFs] |
Latest revision as of 10:36, 14 April 2011
MinorFs is a small set of user space (Fuse) file-systems that provides process level and pseudo-persistent-process level decomposable and (capability style) discretionary access control. MinorFs uses sparse capabilities to designate file-system sub-trees. MinorFs is a particular good fit for use together with the E language for the reason that the E Language supports the concept of pseudo-persistent-processes with its persistent-storage bound persistent VATs. These VATs could be stored in MinorFS to protect the E application from attacks from below. Next to this MinorFs allows the (persistent) delegation of sub-trees of the (initially private) per pseudo-persistent-process file-system storage directory tree, and the (non persistent) delegation of sub-trees of the (initially private) per process file-system storage directory tree.