sandbox: more scenarios

This commit is contained in:
Kartik K. Agaram 2021-12-25 16:16:52 -08:00
parent dbbb396003
commit e4c0b0a3e7
1 changed files with 5 additions and 0 deletions

View File

@ -36,6 +36,11 @@ Scenarios:
- `teliva_editor_state`
- app-specific sandboxing policies
* (2) app can read from a remote server but not write (POST)
* (1) app permissions are saved across restart
* (1) permissions the owner grants to one app are not automatically granted
to another
* (2) downloading a second app with identical name doesn't receive its
predecessors permissions
* app gains access to a remote server for a legitimate purpose, reads
sensitive data from the local system file for legitimate purpose. Now
there's nothing preventing it from exfiltrating the sensitive data to the