3
edits
B2G App Security Model/Threat Model: Difference between revisions
Jump to navigation
Jump to search
B2G App Security Model/Threat Model (view source)
Revision as of 22:42, 16 March 2012
, 16 March 2012→Potential Countermeasures
| Line 69: | Line 69: | ||
* Trusted UI for installing application | * Trusted UI for installing application | ||
* Requirement for HSTS for Apps granted permissions (Strict SSL even?) | * Requirement for HSTS for Apps granted permissions (Strict SSL even?) | ||
* User can audit | * User can audit permission usage of an app so s/he can uninstall the app if it seems to be doing something undesirable | ||
=== Web App Spoofing === | === Web App Spoofing === | ||