The Safe-Tcl Security Model
نویسندگان
چکیده
Safe-Tcl is a mechanism for controlling the execution of programs written in the Tcl scripting language. It allows untrusted scripts (applets) to be executed while preventing damage to the environment or leakage of private information. Safe-Tcl uses a padded cell approach: each applet is isolated in a safe interpreter where it cannot interact directly with the rest of the application. The execution environment of the safe interpreter is controlled by trusted scripts running in a master interpreter. Safe-Tcl provides an alias mechanism that allows applets to request services from the master interpreter in a controlled fashion. Safe-Tcl allows a variety of security policies to be implemented within a single application, and it supports both policies that authenticate incoming scripts and those that do not.
منابع مشابه
EMail With A Mind of Its Own: The Safe-Tcl Language for Enabled Mail
A uniform extension language for email systems can radically extend the utility of electronic mail, simplifying the construction of mail-based services and permitting the delivery of active messages that interact with their recipients and take differential actions based on the recipients’ responses. This paper describes such a language, Safe-Tcl, including the strong security and portability co...
متن کاملWebWise Tcl/Tk: A Safe-Tcl/Tk-based Toolkit Enhanced for the World Wide Web
The WebWiseTclTk toolkit is an enhancement of the existing feature set of Safe-Tcl and Safe-Tk that does not compromise security. The toolkit re-de nes the functionality of the auto load mechanism in Tcl such that it works for packages located anywhere on the World Wide Web. It also re-introduces several commands not available in Safe-Tk such as toplevel and menu to provide a much richer featur...
متن کاملAgent Tcl: a Exible and Secure Mobile-agent System
An information agent manages all or a portion of a user's information space. The electronic resources in this space are often distributed across a network and can contain tremendous quantities of data. Mobile agents provide e cient access to such resources and are a powerful tool for implementing information agents. A mobile agent is an autonomous program that can migrate from machine to machin...
متن کاملArchitectures for secure portable executable content
The Java programming language supports the concept of downloadable executable content; a key technology in a wide range of emerging applications including collaborative systems, electronic commerce, and Web information services. Java enables the execution of a program, on almost any modern computer regardless of hardware configuration and operating system. Safe-Tcl was proposed as an executable...
متن کاملWebWiseTclTk, OmniDesk and OmniFlows: A User-Con gurable Distributed Design Environment inside a Web-Browser
Publications at this site are occasionally revised, please check for the latest version under the same title. Abstract. Today, Web browsers provide a convenient access to the Internet while (1) increasing the number of useful desktop functions, and, (2) reducing the platform dependence on the operating system of the host. This paper introduces a toolkit WebWiseTclTk and demonstrates a range of ...
متن کامل