i just added a wiki page describing the cosmo security model. let me know if anything needs further clarification. <http://wiki.osafoundation.org/bin/view/Projects/CosmoSecurityModel>