Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Discussion: Secure Domain Model, Policy with Labeled IO #31

Open
sudhirvkumar opened this issue Oct 16, 2016 · 2 comments
Open

Discussion: Secure Domain Model, Policy with Labeled IO #31

sudhirvkumar opened this issue Oct 16, 2016 · 2 comments
Labels
discussion

Comments

@sudhirvkumar
Copy link

Building Secure systems with Haskell

Video: https://www.youtube.com/watch?v=jX-zsoPWah0
Presentation: https://cseweb.ucsd.edu/~dstefan/talks/strangeloop2016.pdf

lio: https://hackage.haskell.org/package/lio

Haskell enables us to build applications faster which are reliable, maintainable... and now.. we can also build applications which are secure.

The Idea is... MVC + Policy -> Model + Policy & VC

With policy we will be able to control who will be able to do what and which fields can be read/written by whom.

This will enable to separate code into trusted and untrusted code. Interns can write untrusted code and still not be able to introduce any security vulnerabilities.
@wz1000
Copy link
Collaborator

wz1000 commented Oct 16, 2016

This is pretty much the Operation/Permission monad I was discussing with @saurabhnanda on Gitter.

@sudhirvkumar
Copy link
Author

@wz1000 I need to catch up with the discussions in the gitter...

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
discussion
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@saurabhnanda @sudhirvkumar @wz1000