Basic HTML version of Foils prepared April 7 1998
| 1 | A target typically represents one or more system resources, such as reading files stored on a local disk or sending email on your behalf. |
| 2 | The Privilege Manager, with the aid of the Communicator client, keeps track of which principals are allowed to access which targets at any given time |
| 3 | The Privilege Manager enforces a distinction between granting a privilege and enabling a privilege. A script that has been granted a privilege has a potential power that is not yet turned on. |