Hi caja folks, I expect you're all aware of this but I wanted to mention a paper I recently came across.
There is some really interesting formal work being done on secure subjects of JavaScript. The paper whose title is the subject of this post is particularly relevant and is available at: http://www.doc.ic.ac.uk/~maffeis/csf09.pdf An interesting extension of the work reported in that paper might involve, perhaps, looking at Cajita and proving (or disproving) that it is, indeed, an object-capability language, for example. Cheers Toby
