C-list (computer security)

In capability-based computer security, a C-list is an array of capabilities, usually associated with a process and maintained by the kernel. The program running in the process does not manipulate capabilities directly, but refers to them via C-list indexes—integers indexing into the C-list.

The file descriptor table in Unix is an example of a C-list. Unix processes do not manipulate file descriptors directly, but refer to them via file descriptor numbers, which are C-list indexes.

In the KeyKOS and EROS operating systems, a process's capability registers constitute a C-list.^[1]

References

↑ Glossary, cap-lore.com

[1] Glossary, cap-lore.com

[1]

v t e Object-capability security
OS kernels	NLTSS KeyKOS EROS CapROS Coyotos
Programming languages	Joule E Joe-E Cajita BitC
Filesystems	Tahoe-LAFS
Specialised hardware	Plessey System 250 Cambridge CAP
Concepts	Principle of least authority (POLA) Confused deputy problem Ambient authority File descriptor C-list Object-capability model Capability-based security Capability-based addressing Zooko's triangle Petnames

C-list (computer security)

References

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Tools