A fine-grained protection mechanism in object-based operating systems

The paper describes the design and implementation of a flexible, fine-grained protection mechanism for operating systems based on an object/thread model. The mechanism has the following features: (1) it provides fine-grained protection: each thread has a list of keys (capabilities) and inherits object´s keys when it invokes an abject. (2) The mechanism is very flexible: a combination of multiple keys are used to represent various conditions for accessing objects. (3) It allows a group of keys to be defined as key group, which realizes hierarchical, integrated key processing and management. (4) Users can specify an SCL (subject control list), which defines a list of objects that a subject can invoke. This is used to restrict subjects; suspected subjects are only allowed to access the objects specified in the SCL. The proposed mechanism is being implemented in an object-based operating system which the authors are developing. Implementation techniques to improve efficiency are also described