On Fri, Oct 1, 2010 at 6:05 AM, Disconnect <[email protected]> wrote:
> The only difference between this and the > microsoft attempt is that android doesn't pop it up as often, and doesn't > allow you to say no. (That, personally, is still where I think it is Microsoft Windows Vista/7 UAC Prompt: * tells you the name of the app that will run * the app will run as Administrator (total power) * pops up all the time; usually but not always when it makes sense/is expected Android Install-time Permission Declaration Prompt: * tells you the name of the app and all the powers it wants * the app will run as a distinct non-root UID and have no special powers other than those declared * pops up once, so you only have to make the decision once I think those are pretty significant differences. >From a usability perspective, one of the key things wrong with so-called "dialog" boxes is that they interrupt the user's workflow. If the task is to send an email, a "dialog" box asking you about HTML vs. plaintext formatting is an interruption: The user thought they clicked "Send", but instead they got asked about data formats. UAC is not completely in this bad place, but it kind of is. I think Android's permission screen is a bit better: It's asking users a material question about the task at hand, and it only occurs during that task. "Here is some relevant information about the app you want to install. Still cool?" > lacking. There is no way for a user - power user or grandmother - to say > "this app should not be able to wake up in the middle of the night and get > my gps location".) Settings > Location & security > Use GPS satellites Settings > Location & security > Use wireless networks Uncheck those before you go to sleep. -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/android-security-discuss?hl=en.
