- From: Dave Raggett <dsr@w3.org>
- Date: Mon, 31 Mar 2014 18:51:38 +0100
- To: sysapps <public-sysapps@w3.org>
- CC: Anders Rundgren <anders.rundgren.net@gmail.com>, Marcos Caceres <w3c@marcosc.com>
On 31/03/14 18:38, Anders Rundgren wrote: > On 2014-03-31 18:29, Marcos Caceres wrote: > > > Hi Marcos, > > I think the core issue here (for me...) is that the draft doesn't elaborate > on the trust model. IMO, that should be a prerequisite for all WebAPIs > ( https://developer.mozilla.org/en-US/docs/WebAPI ) because they > are actually rather different. Geo-location is essentially a user privacy > thing while networks usually have "concerned parties" in both ends. > > In a nutshell: I'm not able to tell which end (or mode) the Raw Socket API > draft is trying to protect by requiring a trusted application. This > may very well be due to limited understanding on my side :-( Just to let you all know that I am planning on writing a white paper on the security model for SysApps and hope to be able to introduce this at next week's face to face. Regards, -- Dave Raggett <dsr@w3.org> http://www.w3.org/People/Raggett
Received on Monday, 31 March 2014 17:52:09 UTC