Path: utzoo!attcan!uunet!lll-winken!lll-tis!helios.ee.lbl.gov!pasteur!ames!mailrus!iuvax!rutgers!ucla-cs!admin.cognet.ucla.edu!casey From: casey@admin.cognet.ucla.edu (Casey Leedom) Newsgroups: comp.sys.next Subject: Re: addressing the problem of root access via insecure optical file systems Summary: We nearly have the base for the Mythical CMU SPICE Machine Keywords: network transparent services, authentication, MIT Project Athena, CMU SPICE Project Message-ID: <17010@shemp.CS.UCLA.EDU> Date: 20 Oct 88 06:03:54 GMT References: <360@elan.UUCP> <449@oracle.UUCP> <4005@phoenix.Princeton.EDU> <458@oracle.UUCP> <7569@bloom-beacon.MIT.EDU> Sender: news@CS.UCLA.EDU Reply-To: casey@cs.ucla.edu (Casey Leedom) Organization: UCLA Cognitive Science Program Lines: 81 | From: dyer@arktouros.MIT.EDU (Steve Dyer) | | | From: hedrick@athos.rutgers.edu (Charles Hedrick) | | | | Unless they provide some way to lock a given optical disk in the machine | | permanently, we sure can't put a system like that out in public. | | This has little to do with NeXT, except insofar as it addresses some of | the security issues surrounding the disk which have been brought up here. | | [Standard, but nice outline of what the Project Athena people are doing | at MIT with regard to transparent global authentication: i.e. Kerberos.] I had hoped that NeXT would include some of the project Athena work in their release. Athena seems to be doing some of the best work in transparent networking services, including authentication. [See the Winter 1988 Dallas USENIX Conference proceedings for a very nice outline of the Project Athena work.] o All of the Athena work has been done with an orientation toward the large campus distributed network model that Jobs himself seems to be aiming at. o The Athena work is also a real product currently in use and working well at MIT. The Project Athena work, together with the NeXT machine could provide the base for the first fully functional implementation of the Mythical CMU SPICE Machine. [And the dynamic IP address assignment concepts that have recently been discussed in comp.protocols.tcp-ip would really round the team out.] The CMU SPICE Project's goal was to design a machine which would be integrated into the curriculum of every department on campus, not just the Computer Science and Engineering departments. Every student would be required to buy one of the machines which would be paid off through their four years at the University. At various stages, the SPICE Machine specifications included many of the features provided by NeXT. NeXT could be easily mistaken for a proof of concept SPICE Machine. I would be extremely surprised if Jobs wasn't influenced by some of the SPICE Project ideas. I would like to take this chance to applaud Steve Jobs and the NeXT development and advisory teams. I think they've come out with the perfect machine for their stated market. I've heard people complain that the music output, sound sampling, etc. facilities are superfluous, or that it's missing color graphics, floppy disk drive, a RISC processor, etc. I think those people have missed the boat completely. o The machine isn't just for Computer Science and Engineering folk; it's for *everyone* in the university. This includes the Music, Arts, English, History, Linguistics, Biology, Chemistry, etc., etc., etc. departments. And I think that Computer Science and Engineering people may well find that they like being able to do voice annotation of documents and the ability to see and hear what their colleagues are doing in the Arts and Music departments ... o In order to bring this machine in to its targeted market, it can't cost any more than it does. At $6500, a student can purchase it for $25/($1000 base price)/month at 11% interest, which comes to $162.50/month. Even this is a bit much; I look forward to the price coming down when that 45 chip count let's NeXT do some nice mass production work. Additionally I think that NeXT has given a the computer industry a much needed kick in the ass. They are the proof of concept that you can offer more for less. That we, as customers, don't have to settle for slow lossy hardware and software. I fully expect to see some dramatic price drops in various manufacturers' equipment ... And this won't only affect the University market, because I also fully expect NeXT to enter the general market after they've had a chance to see how the machine shakes out in the university. Casey -------- If I had one wish, it wouldn't be that everyone vote for Dukakis. That would be cheating. Rather, I would wish merely that people examine the issues, the candidates, and their positions, and then make a careful, reasoned choice. At least then I wouldn't feel like the victim of a mindless stampede, motivated entirely by a false sense of satisfaction ...