Exporting - the wrong default?

Gregg Wonderly greggwon at cox.net
Tue Jul 26 12:05:10 UTC 2016 

But the question really comes down to, "will 80% of developers be interested in this level of restriction, or is this functionality which only 20% of all software needs?

The defaults fails to support open, shared access to facilitate reuse.  Instead it supposes that we are all creating secured, limited environments which will demand very limited exposures.  

I don't see this as the reality that exists today or might exist in any coming future.  I see all matters of environmental security issues as being solved by container standards and/or SecurityManager implementations.

It would be awesome to have standards for how modules could be deployed to any container.  It feels like we are instead focused on how to further reduce reuse and sharing in general.

Gregg

Sent from my iPhone

> On Jul 26, 2016, at 6:48 AM, dalibor topic <dalibor.topic at oracle.com> wrote:
> 
> 
> 
>> On 26.07.2016 12:30, Stephen Colebourne wrote:
>> This does not appear to change the underlying model of modules
>> (reliable configuration and strong encapsulation), but would make it
>> much more practical to use.
> 
> It wouldn't be as robust in face of change, as it would require consciously tracking new packages being added to a module and explicitly marking them as internal, or living with design mistakes (or other problems) because someone forgot to immediately restrict access to something that was supposed to be internal.
> 
> For a much longer explanation, see "Fail-safe defaults" in https://buildsecurityin.us-cert.gov/articles/knowledge/principles/failing-securely
> 
> cheers,
> dalibor topic
> -- 
> <http://www.oracle.com> Dalibor Topic | Principal Product Manager
> Phone: +494089091214 <tel:+494089091214> | Mobile: +491737185961
> <tel:+491737185961>
> 
> ORACLE Deutschland B.V. & Co. KG | Kühnehöfe 5 | 22761 Hamburg
> 
> ORACLE Deutschland B.V. & Co. KG
> Hauptverwaltung: Riesstr. 25, D-80992 München
> Registergericht: Amtsgericht München, HRA 95603
> 
> Komplementärin: ORACLE Deutschland Verwaltung B.V.
> Hertogswetering 163/167, 3543 AS Utrecht, Niederlande
> Handelsregister der Handelskammer Midden-Niederlande, Nr. 30143697
> Geschäftsführer: Alexander van der Ven, Jan Schultheiss, Val Maher
> 
> <http://www.oracle.com/commitment> Oracle is committed to developing
> practices and products that help protect the environment

More information about the jigsaw-dev mailing list