Confirmed users
502
edits
B2G/Architecture/System Security: Difference between revisions
Jump to navigation
Jump to search
m
no edit summary
Gdestuynder (talk | contribs) (supervisor process task) |
Gdestuynder (talk | contribs) mNo edit summary |
||
| Line 58: | Line 58: | ||
Features get scoped here, before going into a tracking bug if they're selected to be worked on. Each feature should in general include some sort of risk analysis (or a threat model), and some implementation details. | Features get scoped here, before going into a tracking bug if they're selected to be worked on. Each feature should in general include some sort of risk analysis (or a threat model), and some implementation details. | ||
=== Supervisor process === | |||
=== Risks === | ==== Risks ==== | ||
* Parent process (b2g) is compromised, gives full device access (run as root with no restriction). | * Parent process (b2g) is compromised, gives full device access (run as root with no restriction). | ||
=== Implementation === | ==== Implementation ==== | ||
* Create a new, small footprint process called "Supervisor". | * Create a new, small footprint process called "Supervisor". | ||
** Supervisor provides the following features: | ** Supervisor provides the following features: | ||