<br><div class="gmail_quote">On Thu, Mar 26, 2009 at 1:19 PM, Alexey Proskuryakov <span dir="ltr"><<a href="mailto:ap@webkit.org">ap@webkit.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<div class="im"><br></div>
But I was looking at this in terms of a model for users, not any specific security threats - if we think of persistent workers as an equivalent of native applications that need installation, then we should consider that native applications don't usually update themselves without user consent.<br>
</blockquote><div><br></div><div>It seems like a common model is for offline-enabled applications to store their javascript in the ApplicationCache, and encourage users to create desktop links to access those apps even when offline. Should these applications (which for all intents are "installed") also prompt users before updating? Are you suggesting that user agents may want to require explicit user permission when any application invokes ApplicationCache.update()? That might be a reasonable approach if a given user agent wants to enforce some kind of "no silent update" policy...</div>
<div><br></div><div>-atw</div></div><br>