Object-Capability as a Means of Permission and Authority in Software Systems
This is an incremental review paper summarizing existing research on a domain-specific security concept.
The paper reviews the object-capability model, a security measure introduced in 2013 that encodes access rights in objects to restrict interactions, concluding it can increase software security despite limited adoption.
The object-capability model is a security measure that consists in encoding access rights in individual objects to restrict its interactions with other objects. Since its introduction in 2013, different approaches to object-capability have been formalized and implemented. In this paper, we present the object-capability model, and present and discuss the state-of-the-art research in the area. In the end, we conclude, that object capabilities can help in increasing the security of software, although this concept is not widely spread.