On 07/03/2014 06:58 PM, Dominig ar Foll (Intel OTC) wrote: > >> that is indeed another option - assuming it actually is a service and >> doesnt go >> direct to some sqlite db or file. :) >> >> > Unfortunatly we cannot trust the application to make the control in > Cynera, so the enforcement must be external to the application. > When it come to critical or high usage App, they will always be > provided by the platform creator who always has the option to created > a trusted App which can by pass the default model.
when i read "on the service side" i understood it was the server that already exists handing out the resources so we do it at the current protocol level of the service, not per api. (1 api might not equal 1 protocol request). > I was in the IVI conference yesterday and the needed for highly > optimised trusted application was discussed and to be honest was more > the exception but the requirement to enforce security to most Apps (as > trusted App cost a lot more to develop and maintain) was confirmed. > > If we look at how Android works, it's very close to José proposition > and they are "quite" successful in the world of Phones. > > Regards > > Dominig > > > > _______________________________________________ > Dev mailing list > [email protected] > https://lists.tizen.org/listinfo/dev > -- The above message is intended solely for the named addressee and may contain trade secret, industrial technology or privileged and confidential information otherwise protected under applicable law including the Unfair Competition Prevention and Trade Secret Protection Act. Any unauthorized dissemination, distribution, copying or use of the information contained in this communication is strictly prohibited. If you have received this communication in error, please notify the sender by email and delete this communication immediately.
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Dev mailing list [email protected] https://lists.tizen.org/listinfo/dev
