[pypy-svn] r35879 - pypy/extradoc/planning/secprototype
pedronis at codespeak.net
pedronis at codespeak.net
Tue Dec 19 13:28:35 CET 2006
Author: pedronis
Date: Tue Dec 19 13:28:34 2006
New Revision: 35879
Added:
pypy/extradoc/planning/secprototype/talk.txt (contents, props changed)
Log:
(arigo, pedronis)
some draft contents and open questions
Added: pypy/extradoc/planning/secprototype/talk.txt
==============================================================================
--- (empty file)
+++ pypy/extradoc/planning/secprototype/talk.txt Tue Dec 19 13:28:34 2006
@@ -0,0 +1,32 @@
+
+* PyPy architecture
+
+* space proxying and operation control:
+
+ - thunk
+ - taint
+
+* easy to add new bytecode operations
+
+* potentially we should be able to implement a large range
+ of security polices
+
+* our jit architecture should allow to remove some checks overhead
+
+------------------------------------------------------------
+
+
+* open design issues:
+
+ - pure dynamic implementation: what kind of rules to avoid control
+ flow information leaks
+
+ - label restriction propagation
+ - label restriction enforcing
+ - how to attach "credentials" to executed code
+
+- simple labels principals model (for prototyping)
+
+
+
+
More information about the Pypy-commit
mailing list