We authenticate data before we use it. In addition, we still have DAC for access control of private area.
Tai On 4/6/15, 11:11 AM, "Stephen Smalley" <[email protected]> wrote: >On 04/06/2015 10:54 AM, Tai Nguyen (tainguye) wrote: >> No, This configuration app is not the system app. >> Its job is just to download configuration data from server. >> Since our devices support various deployment scenarios, thus, various >> protocols involved in dealing with configuration data. >> Thus, we have multiple configuration process dealing with getting >> configuration data depending on deployment scenarios. >> As a result, some of these configuration processes are low privilege >> process, not system app. > >So what are you doing to ensure that arbitrary third party apps cannot >write to the configuration files? > > _______________________________________________ Seandroid-list mailing list [email protected] To unsubscribe, send email to [email protected]. To get help, send an email containing "help" to [email protected].
