Labs/Jetpack/JEP/29: Difference between revisions

Labs/Jetpack/JEP/29 (view source)

Revision as of 18:16, 9 October 2009

1,365 bytes added , 9 October 2009

added section on social factors

Varmaa

874

edits

@@ Line 110: / Line 110: @@
 Therefore, instead of raising cryptic errors like "Security manager vetoed action", the text of the error should include specific information on why the action violated a security policy and what the developer can do about it.
+== Social Factors ==
+In general, Jetpack manifests aren't intended to be read by non-technical end-users. Rather, they're intended to be read by reasonably technically experienced AMO reviewers and other trusted advisors&mdash;individuals who, for example, know what DNS and filesystems are but not necessarily what an <tt>XPCNativeWrapper</tt> or a security principal is.
+This audience is expected to compare the manifest with whatever the Jetpack purports to do, as well as take into account any additional social and technical factors, and make a decision about the potential legitimacy of the Jetpack. This decision is then used to advise non-technical users on whether they should trust the Jetpack.
+Without even a cursory review of a Jetpack by trusted human beings, the most the Jetpack Platform can do is present the user with some idea of the ''risk'' involved in installing the Jetpack.  Jetpacks which require high privileges and aren't signed by a trusted authority will thus cause the platform to present the user with a dire warning, and will probably require them to do something fairly cumbersome for installation, e.g. make them type the words "I AGREE TO EXPOSE MY PERSONAL DATA TO THEFT OR DESTRUCTION BY THIS JETPACK".  Jetpacks which require low privileges, however, will present gradually friendlier user interfaces prior to installation.
 == Sample Code ==

Labs/Jetpack/JEP/29: Difference between revisions

Labs/Jetpack/JEP/29 (view source)

Revision as of 18:16, 9 October 2009

Navigation menu

Search