last year, I asked a question on this list whether we could have file
permissions for programs (or processes) in addition to users and
groups. we need this feature to reject malicious code from accessing
system files.<br>
<br>
Microsoft has a tech paper about having what they call trusted processes. you can find it here <br>
<br>
<a href="http://msdn.microsoft.com/mobility/default.aspx?pull=/library/en-us/dnppcgen/html/wmsecurity.asp">http://msdn.microsoft.com/mobility/default.aspx?pull=/library/en-us/dnppcgen/html/wmsecurity.asp</a><br>
<br>
I don't know for how long they've been working on this, but I bet I came up with this concept first.<br>
<br>
what do you think guys of implementing such feature; should it be in the file system, kernel, or both. <br>
<br>
How hard is it to implement, besides the complexity of authentication management.<br>
<br>
-B<br>
&nbsp;<br>