Evidence is the set of information that constitutes input to security policy decisions, such as what permissions can be granted to code. Common forms of evidence include signatures and location of origin of code, but can potentially be anything.
This section describes evidence and how it is represented and processed.