sandbox: more scenarios

2021-12-25 16:16:52 -08:00 · 2021-12-25 16:16:52 -08:00 · e4c0b0a3e7
parent dbbb396003
commit e4c0b0a3e7
1 changed files with 5 additions and 0 deletions
--- a/sandboxing/README.md
+++ b/sandboxing/README.md
@ -36,6 +36,11 @@ Scenarios:
      - `teliva_editor_state`
      - app-specific sandboxing policies
  * (2) app can read from a remote server but not write (POST)
+  * (1) app permissions are saved across restart
+  * (1) permissions the owner grants to one app are not automatically granted
+    to another
+  * (2) downloading a second app with identical name doesn't receive its
+    predecessors permissions
  * app gains access to a remote server for a legitimate purpose, reads
    sensitive data from the local system file for legitimate purpose. Now
    there's nothing preventing it from exfiltrating the sensitive data to the