Christoph Studer wrote: > I heard the Android team is very sensitive about how the security > model/permissions are presented to the user. I think one very > important part is that the user should not constantly be bothered with > permission requests by apps. The result would be that users get tired, > much like they got tired with the Vista UAC, and just always grant > everything and stop worrying about permissions. >
What I'd like to see is something like the opt-in checkboxes for email addresses on webforms ... It's not enough to say yes to having GPS data and web access - I want to know what it is being used for. Am I getting an app which gets local information for me - or am I providing tracking data to a 3rd party? I'd like to see terms and conditions attached to each permission. This could be standardised along similar lines to P3P - possibly even an extension of it. http://www.w3.org/TR/P3P/ http://en.wikipedia.org/wiki/P3P Then a user could specify the level of access they are willing to grant by default - if an application matches this level then permissions are granted automatically. If it doesn't match the user is asked to confirm each exception. -- Sean Burlington www.practicalweb.co.uk --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Android Discuss" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/android-discuss?hl=en -~----------~----~----~----~------~----~------~--~---
