Since we first devised and defined password capabilities as a new technique for building capability-based operating systems, a number of research systems around the world have used them as the bases for a variety of operating systems. Our original Password-Capability System was implemented on custom built hardware with a novel address translation and protection scheme specifically designed to support password-capabilities. The password-capability concept later formed the basis of Opal developed at the University of Washington, and Mungi from the University of New South Wales, both of which used commercially available hardware. A second generation password-capability based system, Walnut, was developed at Monash University in the 1990s. Walnut was designed to run on commercially available hardware. It addressed some shortcomings of the original Password-Capability System but had to sacrifice some features that depended on hardware support. A third generation system that will extend Walnut to support mandatory security policies and other advanced features is currently being considered. This paper analyses the evolution of the Password-Capability System into Walnut, examines the shortcomings of the systems, and identifies issues to be addressed in the new system.
[1]
Ronald David Pose,et al.
Self-tuning paradigm for a distributed multiprocessor system with flexible interconnection topology
,
1997
.
[2]
Ronald Pose.
Capability based, tightly coupled multiprocessor hardware to support a persistent global virtual memory
,
1989,
[1989] Proceedings of the Twenty-Second Annual Hawaii International Conference on System Sciences. Volume II: Software Track.
[3]
C. S. Wallace,et al.
Charging in a Secure Environment
,
1990,
Security and Persistence.
[4]
C. S. Wallace,et al.
A Password-Capability System
,
1986,
Comput. J..
[5]
David Abramson.
Computer hardware to support capability based addressing in a large virtual memory
,
1982
.