Confirm
717
edits
Changes
→Installed trusted application
*App is approved by app store after a code review or some equivalent risk management process.
*App store signs the app manifest which contains the list of assets and their corresponding hashes.
*At install app assets are verified & remain stored locally in appcachepackage.
*Require a Content Security Policy to mitigate content injection attacks and maintain application integrity.
*All explicit permissions are requested at runtime, showing user the app's data usage intentions, and persisted by default.
