Unfortunately, the word "capabilities" in the security world has two not-very-similar meanings: "POSIX capabilities" and "regular capabilities". The POSIX folks wanted to add some of the features of a "capability" system, but by the time they were done, they ended up with sets of bits that really were nothing like a real capability-based system. Capability-based systems are uncommon today, but they exist; EROS is a good example.
Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds