for an approach to security
which relies on the properties of a programming language
in which programs are written to ensure that promises are not violated. This reduces the amount of code that needs validation to the implementing system (an interpreter or compiler), to which this principle can be further applied.
This page is linked from: GO! Information-Flow Security Microkernel Debate