On Sat, 15 Mar 2003 11:31:43 +0100 (CET), Jork Loeser jork@os.inf.tu-dresden.de said:
JL> Gernot,
- Fiasco implements a little more security, especially in relation to
task ownership.
Is "a little more security" similar to "a little bit pregnant"?
I don't think either has a real security model implemented. Most of the V2 kernels (x86, Alpha, MIPS) have it, but none of the later ones AFIK.
JL> You mean IO-flexpages and the like? Or do you think of a higher-level JL> implementation language and a modular kernel design which allow JL> to verify the kernel? Well.
I mean clans & chiefs (or replacements), the basic security mechanism in L4. I'm not aware of any post-V2 kernel implementing such basic communication control.
Gernot -- Gernot Heiser School of Computer Sci. & Engin. Professor of Operating Systems The University of NSW Phone: +61 2 9385 5156 UNSW SYDNEY NSW 2052, Australia Fax: +61 2 9385 7348 http://www.cse.unsw.edu.au/~gernot