I've just been pointed to an article by Kragen Sitaker: The Three Security Architectures. A bit simplistic, but an adequate problematic. With this in mind, we see that at the language level, strong typing is the correct, capabilities-based approach to security, whereas memory protection is the braindead, principals-based approach.
PS: also seen, Capability-based Financial Instruments.
Since I'm into Magic That Works (as opposed to Magic That Doesn't), here's an interesting Chilean guy who teaches The Power of Words to those who (economically) express the direst need to understand it, Fernando Flores. Wouldn't that be the same Fernando Flores who worked with Terry Winograd? (Found by way of Bala Pillai, a new friend met on orkut.)
| S | M | T | W | T | F | S |
|---|---|---|---|---|---|---|
| 1 | 2 | 3 | 4 | 5 | ||
| 6 | 7 | 8 | 9 | 10 | 11 | 12 |
| 13 | 14 | 15 | 16 | 17 | 18 | 19 |
| 20 | 21 | 22 | 23 | 24 | 25 | 26 |
| 27 | 28 | 29 | 30 | 31 |
