Continuations for web programming; Capabilities for security. False promise?
Looking at the limited success of capability-based security, and also at the perhaps limited actual utility of the neat "continuation-based web service" concept, I'm just wondering if anyone would agree that these are both examples of a simple concept that is initially appealing for its elegance, but actually doesn't quite solve the whole problem? Discuss...
3 comments
[ 3.1 ms ] story [ 19.2 ms ] thread[0]: http://seaside.st/
[0]: https://www.cl.cam.ac.uk/research/security/capsicum/
[1]: https://developers.google.com/caja/
[2]: http://www.ponylang.org/
[3]: https://capnproto.org/
- Unix file descriptors.
- The "choose file" dialog used to upload files to web sites.
- CSRF tokens.
- "Anyone with the link can access" aka "unlisted" access control as implemented by many web apps.
- OAuth2 access tokens.
- Google Chrome's sandbox.
- Mac OSX's app sandbox.
- Sandstorm.io's sandbox.
Of course, none of these are "theoretically pure" capabilities, but successful systems are never theoretically pure anything.