Path: utzoo!censor!geac!torsqnt!news-server.csri.toronto.edu!cs.utexas.edu!sdd.hp.com!wuarchive!uunet!odi!dlw
From: dlw@odi.com (Dan Weinreb)
Newsgroups: comp.object
Subject: Re: Information Security and (vs?) object oriented programming
Message-ID: <1990Dec6.161437.20524@odi.com>
Date: 6 Dec 90 16:14:37 GMT
References: <BLK.90Dec5131625@vanity.mitre.org>
Reply-To: dlw@odi.com
Organization: Object Design, Inc.
Lines: 14
In-Reply-To: blk@mitre.org's message of 5 Dec 90 18:16:25 GMT

In article <BLK.90Dec5131625@vanity.mitre.org> blk@mitre.org (Brian L. Kahn) writes:


   Can anyone give me references to papers on infosec or access control
   in OOP?

I recommend that you look into the literature on "capability
architecures".  In particular, the Hydra project at CMU is a good
example of an object-oriented system.  The trick is that they do not
use the terminology "object-oriented" or the other familiar jargon
(e.g. "method"), perhaps because those words were not in the common
vocabulary at that time.  Nevertheless, it's clear that what's going
on in Hydra shows an interesting connection between object-oriented
programming and computer security.