The Libre Lounge crew invite Kate Sills from Agoric to help explain and explore Object Capabilities, an alternative to traditional ACL (Access Control List) or authentication based mechanisms.
Links:
- Agoric (agoric.com)
- POLA Would Have Prevented the Event-Stream Incident (medium.com)
- What are Object Capabilities? (habitatchronicles.com)
- An OCAP Approach to Safe Javascript (docs.google.com)
- The XKCD Sandbox Cycle (xkcd.com)
- Professor David Wagner Gives a Google Tech Talk on Object Capabilities for Security (youtube)