Norman Hardy

Learn More
Our operating system was much like Unix (aM of AT&T) in its protection structures. A compiler was installed in a directory called SYSX. A user would use the compiler by saying "RUN (SYSX)FORT", and could provide the name of a file to receive some optional debugging output. We had instrumented the compiler to collect statistics about language feature usage.(More)
The KeyKOS nanokernel is a capability-based object-oriented operating system that has been in production use since 1983. Its original implementation was motivated by the need to provide security, reliability, and 24-hour availability for applications on the Tymnet® hosts. Requirements included the ability to run multiple instantiations of several operating(More)
0 7 4 0 7 4 5 9 / 0 2 / $ 1 7 . 0 0 © 2 0 0 2 I E E E Because active systems run user-supplied code, we cannot rely on boundary security to keep out hostile code. In the face of such code, EROS provides both security and performance guarantees (see www.eros-os.org for downloadable software). An application that executes hostile code (such as viruses) cannot(More)
KeyKOSTM** is a capability-based system which was designed to meet the performance, reliability, and security goals of the commercial computer service marketplace, KeyKOSs architecture combines several unique features to achieve simple and effective protection mechanisms with a very small amount of privileged code. Particular emphasis is placed here on the(More)
I too have been disturbed by the way that Pascal seems to encourage global variables. My conclusion, however is the opposite of that expressed in Eric Levy's paper° This is an integer expression. We assume that f is an integer valued function of an integer (PROC(INT)INT). The text 'INT sum := O' declares and initializes the variable 'sum'. The scope of this(More)
KeyKOS™** is a capability-based system which was designed to meet the performance, reliability, and security goals of the commercial computer service marketplace, KeyKOS's architecture combines several unique features to achieve simple and effective protection mechanisms with a very small amount of privileged code. Particular emphasis is placed here(More)
This paper introduces the Architecture of KeyKOS ~M* , a capability-based operating system for the I B M System 13 70. We attempt to tel I enough so that certain arguments and conclusions about its properties can be formed. Our description attempts to be essentially complete concerning the function of the kernel** which comprises the privileged-mode code.(More)
  • 1