[kepler-dev] actor whitelist/blacklist

Edward A. Lee eal at eecs.berkeley.edu
Fri Aug 29 07:52:08 PDT 2008


Ptolemy II can be started in the Java sandbox... E.g.:

   vergil -sandbox

This in fact results in a bunch of error messages and exceptions,
indicating that vergil is doing things (like reading user files ---
preference data and libraries) that are not allowed...  But you
can run models, etc.

Edward


At 05:29 AM 8/29/2008, Paul Allen wrote:
>I'm wondering if anybody has come up with a black list of actors that represent major security issues when running on remote systems? E.g., the command line actor represents a major security issue. Likewise I'd guess that the R actor is a security threat since I suspect that there is also an R function that gives access to the command line.
>
>Conversely, maybe someone has come up with an actor white list that represent safe actors?
>
>Or am I taking the wrong approach when thinking about this? Maybe the way to do things is using Java security policies?
>
>Thanks,
>-Paul
>
>
>
>
>_______________________________________________
>Kepler-dev mailing list
>Kepler-dev at ecoinformatics.org
>http://mercury.nceas.ucsb.edu/ecoinformatics/mailman/listinfo/kepler-dev
>

------------ 
Edward A. Lee
Robert S. Pepper Distinguished Professor
EECS Dept., 545Q Cory Hall, UC Berkeley, Berkeley, CA 94720-1770
phone: 510-643-3728, fax: 510-642-5745
eal at eecs.Berkeley.EDU, http://www.eecs.berkeley.edu/Faculty/Homepages/lee.html  



More information about the Kepler-dev mailing list