About: Capability-based addressing

An Entity of Type: organisation, from Named Graph: http://dbpedia.org, within Data Space: dbpedia.org

In computer science, capability-based addressing is a scheme used by some computers to control access to memory as an efficient implementation of capability-based security. Under a capability-based addressing scheme, pointers are replaced by protected objects (called capabilities) that can be created only through the use of privileged instructions which may be executed only by either the kernel or some other privileged process authorised to do so. Thus, a kernel can limit application code and other subsystems access to the minimum necessary portions of memory (and disable write access where appropriate), without the need to use separate address spaces and therefore require a context switch when an access occurs.

Property	Value
dbo:abstract	In computer science, capability-based addressing is a scheme used by some computers to control access to memory as an efficient implementation of capability-based security. Under a capability-based addressing scheme, pointers are replaced by protected objects (called capabilities) that can be created only through the use of privileged instructions which may be executed only by either the kernel or some other privileged process authorised to do so. Thus, a kernel can limit application code and other subsystems access to the minimum necessary portions of memory (and disable write access where appropriate), without the need to use separate address spaces and therefore require a context switch when an access occurs. (en)
dbo:wikiPageExternalLink	http://www.cs.washington.edu/homes/levy/capabook/Chapter5.pdf http://www.eros-os.org/pipermail/cap-talk/2006-August/005543.html https://www.arm.com/architecture/cpu/morello https://archive.today/20130414173515/http:/www.eros-os.org/pipermail/cap-talk/2006-August/005543.html https://ieeexplore.ieee.org/document/9138994/ http://deepblue.lib.umich.edu/bitstream/2027.42/3992/4/bab9977.0001.001.txt http://portal.acm.org/citation.cfm%3Fid=641916&dl=GUIDE&coll=GUIDE&CFID=23904306&CFTOKEN=54433927 http://portal.acm.org/citation.cfm%3Fid=800052.801885 http://doi.acm.org/10.1145/800053.801932 http://csrc.nist.gov/publications/history/lind76.pdf http://www.cs.washington.edu/homes/levy/capabook/Chapter10.pdf http://www.cs.washington.edu/homes/levy/capabook/index.html http://www.cl.cam.ac.uk/research/security/ctsrd/cheri/
dbo:wikiPageID	8803454 (xsd:integer)
dbo:wikiPageLength	6733 (xsd:nonNegativeInteger)
dbo:wikiPageRevisionID	1121071473 (xsd:integer)
dbo:wikiPageWikiLink	dbr:Kernel_(computer_science) dbr:Intel_iAPX_432 dbc:Memory_management dbr:Context_switch dbr:Communications_of_the_ACM dbr:Computer_science dbr:Plessey dbr:Plessey_System_250 dbr:Pointer_(computer_programming) dbr:Burroughs_large_systems dbr:C++ dbr:C_(programming_language) dbr:Address_space dbr:W._David_Sincoskie dbr:AS/400 dbr:AArch64 dbr:ACM_Computing_Surveys dbc:Operating_system_security dbr:CAP_computer dbc:Capability_systems dbr:IBM_System/38 dbr:IBM_i dbr:Instruction_set_architecture dbr:Capability-based_security dbr:Tagged_architecture dbr:Flex_machine dbr:Royal_Signals_and_Radar_Establishment dbr:University_of_Cambridge_Computer_Laboratory dbr:System/38 dbr:System_250 dbr:Dave_Farber dbr:Privilege_(computer_science)
dbp:wikiPageUsesTemplate	dbt:Cite_book dbt:Cite_journal dbt:Reflist dbt:Object-capability_security dbt:Cite_mailing_list
dcterms:subject	dbc:Memory_management dbc:Operating_system_security dbc:Capability_systems
gold:hypernym	dbr:Scheme
rdf:type	dbo:Organisation
rdfs:comment	In computer science, capability-based addressing is a scheme used by some computers to control access to memory as an efficient implementation of capability-based security. Under a capability-based addressing scheme, pointers are replaced by protected objects (called capabilities) that can be created only through the use of privileged instructions which may be executed only by either the kernel or some other privileged process authorised to do so. Thus, a kernel can limit application code and other subsystems access to the minimum necessary portions of memory (and disable write access where appropriate), without the need to use separate address spaces and therefore require a context switch when an access occurs. (en)
rdfs:label	Capability-based addressing (en)
owl:sameAs	freebase:Capability-based addressing yago-res:Capability-based addressing wikidata:Capability-based addressing dbpedia-no:Capability-based addressing https://global.dbpedia.org/id/4f7PU
prov:wasDerivedFrom	wikipedia-en:Capability-based_addressing?oldid=1121071473&ns=0
foaf:isPrimaryTopicOf	wikipedia-en:Capability-based_addressing
is dbo:wikiPageDisambiguates of	dbr:Capability
is dbo:wikiPageRedirects of	dbr:Capability_addressing
is dbo:wikiPageWikiLink of	dbr:Memory_protection dbr:History_of_operating_systems dbr:Capability dbr:Intel_iAPX_432 dbr:Control_Program_Facility dbr:Glenford_Myers dbr:NLTSS dbr:Kernel_(operating_system) dbr:Plessey_System_250 dbr:John_Iliffe_(computer_designer) dbr:Douglas_W._Jones dbr:Object-capability_model dbr:Capability-based_security dbr:Ten15 dbr:Flex_machine dbr:Separation_of_protection_and_security dbr:Capability_addressing
is foaf:primaryTopic of	wikipedia-en:Capability-based_addressing