"CAP_TRUST is being introduced to enable Linux security architects to ontologically differentiate processes that are allowed to modify security guarantees based on deontological (rule-based) predicates from processes allowed to modify security guarantees that are based on narratival (event-based) predicates.
More generally, but less accurately, it allows security architectures to be shaped by both Kantian and Hegelian logic perspectives. "