"Are you really asking whether remote content will be allowed application-level access to the computer?"
In essence, yes. Or at least the ability to trust remote modules somehow. I thought about this some more last night after I had posted my original message, and I'm pretty sure that this solution is for a problem that is quite specific. But it would be nice to discuss and expand upon. The example I've been given in the past is that man in the middle attacks are the main reason for not allowing remote module loading in AIR. Fair enough I understand the risks. But when the AIR file is downloaded for the first time, exactly the same caveat applies, how do you know that what you are downloading is what you think you are downloading? The counter argument is that there is a user agreement so if the downloaded application steals every password they have it's their fault. Fair enough, that's the standard practice. I'd suggest that we extend this paradigm so that the application can download remote modules and trust them, as long as the user gives their agreement. Counter argument, bad User experience (see Vistas constant "Are you sure you want to do this" dialogs). So the only real solution to this is to apply some level of trust to the remote modules whether it be signing, encryption, or whatever. After all, if you cannot trust the modules you download, how can you trust the AIR files you download? But that is a little scary, so I stopped thinking about it ;) Gk. Gregor Kiddie Senior Developer INPS Tel: 01382 564343 Registered address: The Bread Factory, 1a Broughton Street, London SW8 3QJ Registered Number: 1788577 Registered in the UK Visit our Internet Web site at www.inps.co.uk <blocked::http://www.inps.co.uk/> The information in this internet email is confidential and is intended solely for the addressee. Access, copying or re-use of information in it by anyone else is not authorised. Any views or opinions presented are solely those of the author and do not necessarily represent those of INPS or any of its affiliates. If you are not the intended recipient please contact [EMAIL PROTECTED] ________________________________ From: flexcoders@yahoogroups.com [mailto:[EMAIL PROTECTED] On Behalf Of Alex Harui Sent: 10 June 2008 18:42 To: flexcoders@yahoogroups.com Subject: RE: [flexcoders] Flex 3.1 - The "Marshall Plan" If your "remoteModule" contains UI, it could be a remote application and work under the Marshall Plan. Are you really asking whether remote content will be allowed application-level access to the computer? Recent Activity * 99 New Members <http://groups.yahoo.com/group/flexcoders/members;_ylc=X3oDMTJnNWFvNGhyB F9TAzk3MzU5NzE0BGdycElkAzEyMjg2MTY3BGdycHNwSWQDMTcwNTAwNzIwNwRzZWMDdnRsB HNsawN2bWJycwRzdGltZQMxMjEzMTE5NzE5> Visit Your Group <http://groups.yahoo.com/group/flexcoders;_ylc=X3oDMTJmNWJzYmxoBF9TAzk3M zU5NzE0BGdycElkAzEyMjg2MTY3BGdycHNwSWQDMTcwNTAwNzIwNwRzZWMDdnRsBHNsawN2Z 2hwBHN0aW1lAzEyMTMxMTk3MTk-> Yahoo! Finance It's Now Personal <http://us.ard.yahoo.com/SIG=13ool56uu/M=493064.12016257.12445664.867457 8/D=groups/S=1705007207:NC/Y=YAHOO/EXP=1213126919/L=/B=ESZtAtFJq10-/J=12 13119719951204/A=4507179/R=0/SIG=12de4rskk/*http:/us.rd.yahoo.com/evt=50 284/*http:/finance.yahoo.com/personal-finance> Guides, news, advice & more. New web site? Drive traffic now. <http://us.ard.yahoo.com/SIG=13od9v5lv/M=493064.12016308.12445700.867457 8/D=groups/S=1705007207:NC/Y=YAHOO/EXP=1213126919/L=/B=EiZtAtFJq10-/J=12 13119719951204/A=3848642/R=0/SIG=131eshi2t/*http:/searchmarketing.yahoo. com/arp/srchv2.php?o=US2004&cmp=Yahoo&ctv=Groups3&s=Y&s2=&s3=&b=50> Get your business on Yahoo! search. Yahoo! Groups Find balance <http://us.ard.yahoo.com/SIG=13ose663d/M=493064.12016238.12823558.867457 8/D=groups/S=1705007207:NC/Y=YAHOO/EXP=1213126919/L=/B=EyZtAtFJq10-/J=12 13119719951204/A=5286666/R=0/SIG=11in3uvr5/*http:/new.groups.yahoo.com/p lanforabalancedlife> between nutrition, activity & well-being. . <http://geo.yahoo.com/serv?s=97359714/grpId=12286167/grpspId=1705007207/ msgId=115756/stime=1213119719/nc1=4507179/nc2=3848642/nc3=5286666>
