On May 23, 9:46 am, Lucas Adamski <[email protected]> wrote: > On May 23, 2012, at 18:12, Sid Stamm <[email protected]> wrote: > > > On 5/22/12 10:39 PM, Paul Theriault wrote: ... > >> I think this could be a useful feature for app reviewers (be it > >> marketplace staff, community members, or just security/privacy minded > >> users). We would need to implement it in such a way that it could not be > >> used as a social engineering mechanism though. For example, if we just > >> presented a dialog with the permission and reason together, the app > >> could seek to confuse the user. For example, your stashy camera app > >> might try to trick the user into giving access to the address book by > >> prompting something like "Permission: Addressbook, Reason: Allow your > >> camera to take photos. We need to make sure the permission being > >> granted is clear. > > > Yeah, this would be bad. One option (off the top of my head) might be > > to avoid displaying reasons for apps whose manifests haven't been vetted > > by app store reviewers -- but they would still be in the manifest for > > inspection by advanced users. > > Yes, the rationale is only provided for trusted apps. It probably shouldn't > be included for untrusted.
Malware is going to use other forms of social engineering anyway. Non- malware won't lie because of the fear of ramifications. Why not include it for untrusted as well? You could design the UI with big quotes around it or something to make it clear that it is something the developer says, not something the browser/OS says. _______________________________________________ dev-webapps mailing list [email protected] https://lists.mozilla.org/listinfo/dev-webapps
