fedir/ICFS-thesis
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Added access control model explanation

Browse Source
This commit is contained in:
BritishTeapot 2025-04-09 15:38:35 +02:00
parent 8901b4d259
commit ff554bd5c6
2 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
approach.tex
View File

@ -18,3 +18,10 @@ It is backwards compatible: ICFS overrides the regular system call interface usi
\subsection{Access Control Model}
As promised, the access control model of ICFS is trivially simple. It features processes as it's subjects, and files as objects. Whenever a process attempts to access a filesystem object, a dialogue is displayed with three options:
\begin{itemize}
\item \emph{Allow}, that will allow the access to the filesystem object for this process and any other process that is started with the same executable.
\item \emph{Allow this time}, that will allow the access to the filesystem object for the runtime of the requesting process.
\item \emph{Deny}, that will deny all access to the filesystem object.
\end{itemize}

BIN
main-en.pdf
View File

Binary file not shown.