===Application Scope===
Foundational assumption was that there was only one app per domain. This is because an origin is effectively the only security boundary in the browser, and determining the security implications of allowing apps with different permissions on the same domain is a time consuming exercise for the 1.0 timeframe.
Note that trusted and certified apps have their own unique origin via the app:// scheme.
===Trusted Application Review Guidelines===