sandbox: new scenario

2021-12-25 14:36:56 -08:00 · 2021-12-25 14:36:56 -08:00 · ee66da41f5
parent 399fb500f4
commit ee66da41f5
1 changed files with 4 additions and 0 deletions
--- a/sandboxing/README.md
+++ b/sandboxing/README.md
@ -44,6 +44,10 @@ Scenarios:
      allows an app to do anything. Educate people to separate apps that read
      sensitive data from apps that access remote servers.
    - (2) solution: map phases within an app to distinct permission sets
+  * app A legitimately needs to read sensitive data. It saves a copy to file
+    X. app B seems to legitimately needs to access the network, but also
+    asks to read file X. If the owner forgets who wrote file X and what it
+    contains, sensitive data could be exfiltrated.
  * (3) app wants access to system() or exec() or popen()

 Difficulty levels