1
کامپیوتر و شبکه::
شمارش رویدادها
only read-only capabilities Confinement Use Access Control List to define confinement Define safe environments for confined processes or test via authorize capabilities Revocation Revocation by eventcounts (single page entry) or revocation by chaining (multiple page entries) Indirect capabilities that permit later revocation of all descendants (similar to Redell [252])
Redell's scheme could result in a deep nesting of revoker capabilities, so SCAP defines two different schemes, called revocation with eventcounts and revocation by chaining.
Revocation with eventcounts is appropriate for systems that use the same page table for each shared object.
In re- vocation by eventcounts, an event, such as revoking a capability, causes an eventcount to change.
Eventcount values are stored with capabilities as well, so that should a revocation occur, the event-
واژگان شبکه مترجمین ایران