Fiasco vs Hazelnut

Gernot Heiser gernot at
Sat Mar 15 12:38:52 CET 2003

>>>>> On Sat, 15 Mar 2003 11:31:43 +0100 (CET), Jork Loeser <jork at> said:
JL> Gernot,
>> > - Fiasco implements a little more security, especially in relation to
>> > task ownership.
>> Is "a little more security" similar to "a little bit pregnant"?
>> I don't think either has a real security model implemented. Most of
>> the V2 kernels (x86, Alpha, MIPS) have it, but none of the later ones
>> AFIK.

JL> You mean IO-flexpages and the like? Or do you think of a higher-level
JL> implementation language and a modular kernel design which allow
JL> to verify the kernel? Well.

I mean clans & chiefs (or replacements), the basic security mechanism
in L4. I'm not aware of any post-V2 kernel implementing such basic
communication control.

Gernot Heiser                        School of Computer Sci. & Engin.
Professor of Operating Systems       The University of NSW
Phone: +61 2 9385 5156               UNSW SYDNEY NSW 2052, Australia
Fax:   +61 2 9385 7348     

More information about the l4-hackers mailing list