Hi, I'm currently diving in to Cynara, SMACK and their usage in Tizen. According to the wiki pages, because of the high complexity of SMACK policies in Tizen2 you invented the Three Domain Model for Tizen3 to reduce complexity.
But I still don't see how this model can reduce complexity: Apps for example get assigned to the "User" domain, that means they get assigned a SMACK label of the form "User::App::AppID" which is also used by Cynara for identifying permission requests from this app. [1] But as SMACK labels don't have any hierarchy and labels just being ASCII strings in a flat namespace, isn't it necessary to create new policy rules for exactly this new label, too? So how do the 3 domains reduce the complexity and needed amount of policy rules? Am I just misunderstanding something? BR Oliver Schmidt [1] https://wiki.tizen.org/Security/Overview
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ Dev mailing list Dev@lists.tizen.org https://lists.tizen.org/listinfo/dev
