[whatwg] Device Element
Bjartur Thorlacius
svartman95 at gmail.com
Sun Jan 9 11:01:52 PST 2011
On 1/9/11, Aryeh Gregor <Simetrical+w3c at gmail.com> wrote:
> On Sun, Jan 9, 2011 at 7:21 AM, Bjartur Thorlacius <svartman95 at gmail.com>
> wrote:
>> So, OS permissions are too complex, so you figure it's best to build
>> another permission system on top of the existing ones? Why?
>
> 1) OS permissions are not adequately standardized. Every OS has its
> own permissions model. This makes portability hard, and increases the
> risk of security bugs caused by the same policy being enforced
> differently by different OSes.
>
Applications need not be aware of the exact permission model used.
As you stated yourself, OS are implementing security models accounting
for untrusted apps. I find it unnecessary to duplicate the maintenance work.
More information about the whatwg
mailing list