- From: Bjartur Thorlacius <svartman95@gmail.com>
- Date: Sun, 9 Jan 2011 19:01:52 +0000
On 1/9/11, Aryeh Gregor <Simetrical+w3c at gmail.com> wrote: > On Sun, Jan 9, 2011 at 7:21 AM, Bjartur Thorlacius <svartman95 at gmail.com> > wrote: >> So, OS permissions are too complex, so you figure it's best to build >> another permission system on top of the existing ones? Why? > > 1) OS permissions are not adequately standardized. Every OS has its > own permissions model. This makes portability hard, and increases the > risk of security bugs caused by the same policy being enforced > differently by different OSes. > Applications need not be aware of the exact permission model used. As you stated yourself, OS are implementing security models accounting for untrusted apps. I find it unnecessary to duplicate the maintenance work.
Received on Sunday, 9 January 2011 11:01:52 UTC