B2G App Security Model: Difference between revisions

Jump to navigation Jump to search

B2G App Security Model (view source)

Revision as of 22:12, 31 May 2012

3 bytes added ,  31 May 2012
no edit summary
mNo edit summary
No edit summary
Line 52: Line 52:
*Apps should not be vulnerable to common web vulnerabilities when granted significant privileges
*Apps should not be vulnerable to common web vulnerabilities when granted significant privileges
*Ability to grant trust for certain highly sensitive privileges (such as phone dialing) may be restricted at the OS level to specific trusted parties
*Ability to grant trust for certain highly sensitive privileges (such as phone dialing) may be restricted at the OS level to specific trusted parties
|Feature functional spec=A threat model is being documented here: [[B2G_App_Security_Model/Threat_Model]]
|Feature functional spec=The current state of the application security model is located here: [[Apps/Security]]


An collection of various discussions and ideas are archived here: [[Apps/Security]]
A threat model is being documented here: [[B2G_App_Security_Model/Threat_Model]]


WebAPI permissions manager implementation: https://bugzilla.mozilla.org/show_bug.cgi?id=707625
WebAPI permissions manager implementation: https://bugzilla.mozilla.org/show_bug.cgi?id=707625
Ladamski
Confirmed users
717

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/436401"

Navigation menu