HTML Microdata document

This HTML5 document contains 231 embedded RDF statements represented using HTML+Microdata notation.

The embedded RDF content will be recognized by any processor of HTML5 Microdata.

Namespace Prefixes

Prefix	IRI
dbt	http://dbpedia.org/resource/Template:
wikipedia-en	http://en.wikipedia.org/wiki/
dbpedia-lmo	http://lmo.dbpedia.org/resource/
dbr	http://dbpedia.org/resource/
n36	http://dbpedia.org/resource/System/
n29	http://www.erights.org/
n11	http://srl.cs.jhu.edu/pubs/
n25	https://www.vultr.com/docs/
n37	https://web.archive.org/web/20031029002231/http:/www.eros-os.org/
n30	http://doi.ieeecomputersociety.org/10.1109/
dcterms	http://purl.org/dc/terms/
dbpedia-cs	http://cs.dbpedia.org/resource/
rdfs	http://www.w3.org/2000/01/rdf-schema#
rdf	http://www.w3.org/1999/02/22-rdf-syntax-ns#
n41	http://portal.acm.org/
n22	http://www.cap-lore.com/CapTheory/
dbp	http://dbpedia.org/property/
xsdh	http://www.w3.org/2001/XMLSchema#
n10	http://dbpedia.org/resource/AS/
dbo	http://dbpedia.org/ontology/
dbpedia-vi	http://vi.dbpedia.org/resource/
dbpedia-ja	http://ja.dbpedia.org/resource/
dbc	http://dbpedia.org/resource/Category:
dbpedia-de	http://de.dbpedia.org/resource/
n12	https://archive.today/20130414162939/http:/www.eros-os.org/pipermail/cap-talk/2003-March/
n18	http://man7.org/linux/man-pages/man7/
yago	http://dbpedia.org/class/yago/
wikidata	http://www.wikidata.org/entity/
gold	http://purl.org/linguistics/gold/
n23	https://archive.today/20130112225523/http:/www.eros-os.org/essays/
n38	https://global.dbpedia.org/id/
yago-res	http://yago-knowledge.org/resource/
dbpedia-it	http://it.dbpedia.org/resource/
n32	http://www.linuxjournal.com/magazine/
prov	http://www.w3.org/ns/prov#
foaf	http://xmlns.com/foaf/0.1/
n40	http://www.ibm.com/developerworks/library/l-posixcap/
n28	http://www.cs.washington.edu/homes/levy/capabook/
freebase	http://rdf.freebase.com/ns/
n17	http://www.sevagas.com/
n34	http://www.friedhoff.org/
owl	http://www.w3.org/2002/07/owl#

Statements

Subject Item: dbr:CapROS
dbo:wikiPageWikiLink: dbr:Capability-based_security
dbp:family: dbr:Capability-based_security

Subject Item: dbr:Encapsulation_(computer_programming)
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Principle_of_least_privilege
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Privilege_separation
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Department_of_Computer_Science_and_Technology,_University_of_Cambridge
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Hydra_(operating_system)
dbo:wikiPageWikiLink: dbr:Capability-based_security
dbp:family: dbr:Capability-based_security

Subject Item: dbr:Capability
dbo:wikiPageWikiLink: dbr:Capability-based_security
dbo:wikiPageDisambiguates: dbr:Capability-based_security

Subject Item: dbr:E_(programming_language)
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Information_security
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Intel_iAPX_432
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Comparison_of_operating_systems
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Computer_security
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Maurice_Wilkes
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Rust_(programming_language)
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:RSBAC
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Clustered_file_system
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:FreeBSD
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Fuchsia_(operating_system)
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:GNOSIS
dbo:wikiPageWikiLink: dbr:Capability-based_security
dbp:family: dbr:Capability-based_security

Subject Item: dbr:Genode
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:NLTSS
dbo:wikiPageWikiLink: dbr:Capability-based_security
dbp:family: dbr:Capability-based_security

Subject Item: dbr:Confused_deputy_problem
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Context-based_access_control
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Comparison_of_operating_system_kernels
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Computer_access_control
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Computer_security_model
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Plessey
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Plessey_System_250
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Pointer_(computer_programming)
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Mark_S._Miller
dbo:wikiPageWikiLink: dbr:Capability-based_security
dbp:knownFor: dbr:Capability-based_security
dbo:knownFor: dbr:Capability-based_security

Subject Item: dbr:Microkernel
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:CRIU
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:WebAssembly
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:William_Wulf
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Distributed_object
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Lattice-based_access_control
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:ALGOL_68C
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Access_control
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Actor_model
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:EROS_(microkernel)
dbo:wikiPageWikiLink: dbr:Capability-based_security
dbp:family: dbr:Capability-based_security

Subject Item: dbr:Ambient_authority
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Capsicum_(Unix)
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Discretionary_access_control
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Graph-based_access_control
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Handle_(computing)
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Attribute-based_access_control
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Accent_kernel
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Access-control_list
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Access_control_expression
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Access_control_matrix
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:KeyKOS
dbo:wikiPageWikiLink: dbr:Capability-based_security
dbp:family: dbr:Capability-based_security

Subject Item: dbr:L4_microkernel_family
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Symbian
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Transparency_(human–computer_interaction)
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Secure_cryptoprocessor
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Authorization
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Authorization_certificate
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Marc_Stiegler
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Mark_Granovetter
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:C.mmp
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:CAP_computer
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:File_descriptor
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:File_system
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Microprocessor
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Midori_(operating_system)
dbo:wikiPageWikiLink: dbr:Capability-based_security
dbp:family: dbr:Capability-based_security

Subject Item: dbr:OCaml
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Object-capability_model
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Organisation-based_access_control
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Capability-based_addressing
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Capability-based_operating_system
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Capability-based_security
rdf:type: yago:Organism100004475 yago:LivingThing100004258 yago:WikicatComputerSecurityModels yago:Object100002684 yago:Assistant109815790 yago:Worker109632518 yago:YagoLegalActor yago:YagoLegalActorGeo yago:Person100007846 yago:CausalAgent100007347 yago:Model110324560 yago:Whole100003553 yago:PhysicalEntity100001930
rdfs:label: Capability Capability-based security Zabezpečení založené na způsobilosti Capability-based security Capability-based security
rdfs:comment: Il termine capability è un concetto utilizzato nella sicurezza informatica ed è uno dei modelli di sicurezza esistenti. Una capability (conosciuta anche come chiave) è un token di autorità comunicabile e non falsificabile. Essa consiste in un valore che fa riferimento ad un oggetto insieme a una collezione di diritti di accesso. Un programma utente che viene eseguito su un sistema operativo basato su capability deve utilizzare una capability per accedere ad un oggetto. Capability-based security is a concept in the design of secure computing systems, one of the existing security models. A capability (known in some systems as a key) is a communicable, unforgeable token of authority. It refers to a value that references an object along with an associated set of access rights. A user program on a capability-based operating system must use a capability to access an object. Capability-based security refers to the principle of designing user programs such that they directly share capabilities with each other according to the principle of least privilege, and to the operating system infrastructure necessary to make such transactions efficient and secure. Capability-based security is to be contrasted with an approach that uses traditional UNIX permissions and Acc Capability-based security (deutsch Berechtigungsbasierte Sicherheit[-srichtlinien]) ist ein Sicherheitskonzept aus dem Bereich der Computeradministration. Eine Fähigkeit / eine Berechtigung (englisch capability), die auch in manchen Systemen als Schlüssel bekannt ist, ist ein kommunizierbarer und unveränderbarer Authentifizierungstoken. Dieser bezieht sich auf einen Wert, der ein Objekt und ein dazu passendes Set von Zugriffsrechten darstellt. Ein Computerprogramm des Benutzers, das auf einem Fähigkeiten-basierenden Betriebssystem läuft, muss dementsprechende Fähigkeiten/Rechte haben, um auf Objekte zugreifen zu können. Capability-based security は、セキュリティの高い（セキュアな）コンピュータを設計するためのコンセプトの一つである。 Zabezpečení založené na způsobilosti je koncept v návrhu zabezpečených výpočetních systémů, jeden ze stávajících modelů zabezpečení. Způsobilost (známé v některých systémech jako klíč) je přenosným a nepadělatelným projev autority. Odkazuje na hodnotu, která jedinečně odkazuje na objekt spolu s přidruženou sadou přístupových práv. Na základě svého držení procesem, který používá odkazovaný objekt, token způsobilosti uděluje tomuto procesu způsobilost komunikovat s objektem určitými způsoby. V systému založeném na způsobilostech je to uživatel, který musí předložit svou autorizační způsobilost (a prokázat, že je jejím vlastníkem) poskytovateli služeb, zatímco v tradičním systému ACL je to poskytovatel služeb, který musí kontrolovat, zda je uživatel přímo nebo nepřímo (například prostřednictv
dcterms:subject: dbc:Access_control dbc:Computer_security_models dbc:Capability_systems
dbo:wikiPageID: 539717
dbo:wikiPageRevisionID: 1113013984
dbo:wikiPageWikiLink: dbr:POSIX dbr:Serialization dbc:Access_control dbr:Handle_(computing) n10:400 dbr:Reference_(computer_science) dbr:Cambridge_CAP_computer dbr:WebAssembly dbr:Capsicum_(Unix) dbr:Extremely_Reliable_Operating_System dbc:Computer_security_models dbr:Path_(computing) dbr:Intel_iAPX_432 dbr:E_programming_language dbr:Ambient_authority dbr:Genode dbr:Google_Fuchsia dbr:Access_token dbr:FreeBSD dbr:Flex_machine dbr:Kernel_(computer_science) dbr:File_descriptor dbr:Amoeba_(operating_system) dbr:Orthogonal_persistence dbr:Plessey_250 dbr:L4_microkernel_family dbr:Security_hole dbr:Unix_permissions dbr:Hydra_(operating_system) dbr:Carnegie_Mellon_University dbr:C.mmp dbr:ACM_Computing_Surveys dbr:CapROS dbr:Plessey_System_250 dbr:Confused_deputy_problem dbr:Computer_security dbr:Tymshare dbr:Principle_of_least_privilege dbr:Access_control_list dbr:Access_control dbr:User_(computing) dbr:TU_Dresden dbr:Computer_program dbr:Privilege_(computer_science) dbr:Li_Gong_(computer_scientist) dbr:Object_(computer_science) dbc:Capability_systems n36:38 dbr:Access_Control_Lists dbr:Tahoe-LAFS dbr:Capability-based_addressing dbr:Capability-based_operating_system dbr:Computer_security_model dbr:GNOSIS dbr:Data_structure dbr:KeyKOS
dbo:wikiPageExternalLink: n11:SRL2003-02.pdf n12:001133.html n17:%3FPOSIX-file-capabilities-the-dark n18:capabilities.7.html n22:index.html n23:capintro.html n25:working-with-linux-capabilities n28:Chapter5.pdf n29: n30:SECPRI.1989.36277 n32:making-root-unprivileged n34:posixfilecaps.html n37: n40: n41:citation.cfm%3Fid=319163&dl=ACM&coll=&CFID=15151515&CFTOKEN=6184618 n41:citation.cfm%3Fid=361070&dl=ACM&coll=&CFID=15151515&CFTOKEN=6184618 n41:citation.cfm%3Fid=538134&dl=ACM&coll=&CFID=15151515&CFTOKEN=6184618 n41:citation.cfm%3Fid=801885&dl=ACM&coll=&CFID=15151515&CFTOKEN=6184618 n41:citation.cfm%3Fid=850701&coll=&dl=ACM&CFID=15151515&CFTOKEN=6184618 n41:citation.cfm%3Fid=850709&dl=ACM&coll=&CFID=15151515&CFTOKEN=6184618 n28:
owl:sameAs: freebase:m.02n10l wikidata:Q1094291 dbpedia-de:Capability-based_security yago-res:Capability-based_security dbpedia-it:Capability dbpedia-ja:Capability-based_security dbpedia-vi:An_ninh_trên_cơ_sở_năng_lực_tiềm_tàng dbpedia-lmo:Capability n38:AdUq dbpedia-cs:Zabezpečení_založené_na_způsobilosti
dbp:wikiPageUsesTemplate: dbt:Cite_journal dbt:Short_description dbt:ISBN dbt:Reflist dbt:Object-capability_security
dbo:abstract: Capability-based security (deutsch Berechtigungsbasierte Sicherheit[-srichtlinien]) ist ein Sicherheitskonzept aus dem Bereich der Computeradministration. Eine Fähigkeit / eine Berechtigung (englisch capability), die auch in manchen Systemen als Schlüssel bekannt ist, ist ein kommunizierbarer und unveränderbarer Authentifizierungstoken. Dieser bezieht sich auf einen Wert, der ein Objekt und ein dazu passendes Set von Zugriffsrechten darstellt. Ein Computerprogramm des Benutzers, das auf einem Fähigkeiten-basierenden Betriebssystem läuft, muss dementsprechende Fähigkeiten/Rechte haben, um auf Objekte zugreifen zu können. Berechtigungsbasierte Sicherheit bezieht sich auf das Prinzip, dass Computerprogramme nach dem Prinzip der „minimalen Rechte“ (engl. principle of least privilege) untereinander kommunizieren und sich dementsprechend Fähigkeiten bzw. Berechtigungen zuweisen und dass das Betriebssystem die passende Infrastruktur hat, um effektiv und sicher arbeiten zu können. Fähigkeitsbasierte Sicherheit steht im Gegensatz zu der Ring- bzw. Domain-Methode (engl. hierarchical protection domains). Die meisten Betriebssysteme implementieren Hilfsmittel, die diesen Fähigkeiten ähneln. Diese bieten oft nicht genügend Support an, um Fähigkeiten bzw. Berechtigungen zwischen dem Betriebssystem und unbekannten Instanzen auszutauschen, um damit die primäre Stelle für Zugriffsrechte zu sein. Im Gegensatz dazu ist ein fähigkeitsbasiertes System darauf ausgerichtet. Die Fähigkeiten bzw. Berechtigungen, um die es in diesem Artikel geht, sollten nicht mit POSIX verwechselt werden. Capability-based security は、セキュリティの高い（セキュアな）コンピュータを設計するためのコンセプトの一つである。 Zabezpečení založené na způsobilosti je koncept v návrhu zabezpečených výpočetních systémů, jeden ze stávajících modelů zabezpečení. Způsobilost (známé v některých systémech jako klíč) je přenosným a nepadělatelným projev autority. Odkazuje na hodnotu, která jedinečně odkazuje na objekt spolu s přidruženou sadou přístupových práv. Na základě svého držení procesem, který používá odkazovaný objekt, token způsobilosti uděluje tomuto procesu způsobilost komunikovat s objektem určitými způsoby. V systému založeném na způsobilostech je to uživatel, který musí předložit svou autorizační způsobilost (a prokázat, že je jejím vlastníkem) poskytovateli služeb, zatímco v tradičním systému ACL je to poskytovatel služeb, který musí kontrolovat, zda je uživatel přímo nebo nepřímo (například prostřednictvím role vlastněné uživatelem) oprávněn provádět požadovanou operaci na požadovaném prostředku. Capability-based security is a concept in the design of secure computing systems, one of the existing security models. A capability (known in some systems as a key) is a communicable, unforgeable token of authority. It refers to a value that references an object along with an associated set of access rights. A user program on a capability-based operating system must use a capability to access an object. Capability-based security refers to the principle of designing user programs such that they directly share capabilities with each other according to the principle of least privilege, and to the operating system infrastructure necessary to make such transactions efficient and secure. Capability-based security is to be contrasted with an approach that uses traditional UNIX permissions and Access Control Lists. Although most operating systems implement a facility which resembles capabilities, they typically do not provide enough support to allow for the exchange of capabilities among possibly mutually untrusting entities to be the primary means of granting and distributing access rights throughout the system. A capability-based system, in contrast, is designed with that goal in mind. Il termine capability è un concetto utilizzato nella sicurezza informatica ed è uno dei modelli di sicurezza esistenti. Una capability (conosciuta anche come chiave) è un token di autorità comunicabile e non falsificabile. Essa consiste in un valore che fa riferimento ad un oggetto insieme a una collezione di diritti di accesso. Un programma utente che viene eseguito su un sistema operativo basato su capability deve utilizzare una capability per accedere ad un oggetto. Un sistema di sicurezza basato su capability è il principio di design che permette ai programmi utente lo scambio diretto delle capabilities seguendo il principio del privilegio minimo, e all'infrastruttura del sistema operativo di rendere questi passaggi efficienti e sicuri. Anche se molti sistemi operativi implementano meccanismi che assomigliano alle capabilities, solitamente non offrono il supporto per lo scambio delle capabilities tra entità come metodo principale di autorizzazione e distribuzione dei diritti di accesso. Al contrario quest'ultimo è proprio lo scopo di un sistema basato su capability. Questo sistema di sicurezza utilizza un approccio contrastante rispetto a quello introdotto dai domini gerarchici di protezione. Il termine capability, come viene utilizzato in questo articolo, non va confuso con l'omonima parola associata a POSIX 1e/2c. Quest'ultimo è un sistema che prevede privilegi meno raffinati e non trasferibili tra processi.
gold:hypernym: dbr:Concept
prov:wasDerivedFrom: wikipedia-en:Capability-based_security?oldid=1113013984&ns=0
dbo:wikiPageLength: 13569
foaf:isPrimaryTopicOf: wikipedia-en:Capability-based_security

Subject Item: dbr:Capability_management
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:RPyC
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Secure_Scuttlebutt
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Mandatory_access_control
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Sandbox_(computer_security)
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Shatter_attack
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Unix_domain_socket
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Risk-based_authentication
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Security-focused_operating_system
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Exokernel
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Ptrace
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Role-based_access_control
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Security_Identifier
dbo:wikiPageWikiLink: dbr:Capability-based_security

Subject Item: dbr:Capability-Based_Computer_Systems
dbo:wikiPageWikiLink: dbr:Capability-based_security
dbo:wikiPageRedirects: dbr:Capability-based_security

Subject Item: dbr:Capability_based_security
dbo:wikiPageWikiLink: dbr:Capability-based_security
dbo:wikiPageRedirects: dbr:Capability-based_security

Subject Item: dbr:Capability_security
dbo:wikiPageWikiLink: dbr:Capability-based_security
dbo:wikiPageRedirects: dbr:Capability-based_security

Subject Item: dbr:Capsicum_Capabilties
dbo:wikiPageWikiLink: dbr:Capability-based_security
dbo:wikiPageRedirects: dbr:Capability-based_security

Subject Item: wikipedia-en:Capability-based_security
foaf:primaryTopic: dbr:Capability-based_security