SubDomain predates all of these except for SELinux (which has roots that go back nearly 20 years) and LIDS got design elements from SubDomain.SELinux. LIDS. systrace (Linux, BSD, MacOS X). a few things on FreeBSD i can't recall.
To be fair, similar designs pre-dating SubDomain include Janus (Goldberg, Wagner, et al, USENIX Security 1996) and TRON (Berman et al, USENIX Winter Conference 1995).
Long ago, Aladdin's "eSafe" product included a desktop component that controlled what resources a given application could access. More recently, "personal firewall" products like Zone Alarm have included that kind of functionality.i dont know what exists for the average user on Windows at the application level,
Crispin
-- Crispin Cowan, Ph.D. http://immunix.com/~crispin/ CTO, Immunix http://immunix.com Immunix 7.3 http://www.immunix.com/shop/
