Tomasz, Thanks for summarize Tizen 3.0 core privilege list. I noticed there are some different between the list https://wiki.tizen.org/wiki/Security:Tizen_3.0_Core_Privileges and compliance spec. (Because there is no compliance spec for Tizen 3.0, I refer Tizen 2.2.1 spec https://source.tizen.org/sites/default/files/page/tizen-2.2.1-compliance-specification-for-mobile-profile-v1.0.pdf). In Tizen compliance, the privileges are composed of 3 parts:
1. W3C/HTML5 API related Privileges 2. Supplementary API related Privileges 3. Tizen Web Device API related Privileges I can't find below privileges from core list: l http://tizen.org/privilege/mediacapture (W3C/HTML5 API related Privileges) l http://tizen.org/privilege/unlimitedstorage (W3C/HTML5 API related Privileges) l http://tizen.org/privilege/fullscreen (Supplementary API related Privileges) What do you think of above privileges? Are they missed or skipped in Tizen 3.0? Thanks Zhang Xu From: Dev [mailto:[email protected]] On Behalf Of Tomasz Swierczek Sent: Wednesday, October 29, 2014 12:38 AM To: [email protected] Subject: [Dev] Tizen 3.0 Core privilege list Hi All, As part of our work on privilege-based access control model with Cynara in Tizen 3.0, we've gathered Tizen 3.0 Core privileges in one place: https://wiki.tizen.org/wiki/Security:Tizen_3.0_Core_Privileges On last F2F security workshop in Vannes Intel and Samsung teams decided that this is the privileges set we will start our work with when implementing security checks. These privileges will be used to check application's access to any of Tizen OS services/functionalities. This is the list of privileges that Security Manager will expect to get from application installers and this is the set of privileges that Cynara will be asked for. Aside from the list itself, I've added comments on what exactly these privileges mean to the system and how/by who should be used. The list is not strictly closed, it is rather an effort to document what we will use later (within a month I guess) when configuring Tizen access control mechanisms. Best Regards, [cid:[email protected]] Tomasz Świerczek Samsung R&D Institute Poland Samsung Electronics Office +48 22 377 95 59 Cell +48 503 135 021 [email protected]<mailto:[email protected]>
_______________________________________________ Dev mailing list [email protected] https://lists.tizen.org/listinfo/dev
