C-list (computer security): Difference between revisions

Content deleted Content added
PGibbons (talk | contribs)
No edit summary
 
m formatting fix
 
(16 intermediate revisions by 12 users not shown)
Line 1:
In [[CapabilityObject-basedcapability securitymodel|capability-based computer security]], a '''C-list''' is an [[array (data structure)|array]] of capabilities, usually associated with a [[process (computing)|process]] and maintained by the [[kernel (computeroperating sciencesystem)|kernel]]. The program running in the process does not manipulate capabilities directly, but refers to them via '''C-list indexes'''—integers indexing into the C-list.
 
The [[file descriptor]]|file descriptor table]] in [[Unix]] is an example of a C-list. Unix processes do not manipulate [[file descriptorsdescriptor]]s directly, but refer to them via file descriptor numbers, which are C-list indexes.
 
In the [[KeyKOS]] and [[EROS (microkernel)|EROS]] operating systems, a process's capability registers constitute a C-list.<ref>{{cite web|url=http://www.cap-lore.com/CapTheory/Glossary.html |title=Glossary |publisher=Cap-lore.com |date=2000-01-19 |accessdate=2019-07-08}}</ref>
 
== See also ==
* [[Access-control list]]
 
== References ==
{{Reflist}}
 
{{Object-capability security}}
 
[[Category:Arrays]]
[[Category:Operating system security]]