QtWebKit Security
-
With QtWebKit module it is possible to create hybid native/web applications. How is the security handled by Qt? I mean, since QtWebKit exposes native resources to the web context, is there a security mechanism to avoid web threats from accessing those resources?
Thanks in advance
-
On Symbian your app will still be restricted by the lovely Symbian Security model, so even if someone tries to do something nasty in web content in your hybrid app it will still be, in theory, stopped if the app is not signed with the right capabilities.
On Maemo it's completely open I believe :D
On the desktop, it's also completely open :)
-
frgo: There was an presentation about a security framework of the next maemo based device at "fosdem":http://archive.fosdem.org/2010/schedule/events/maemo. I do not know whether those plans were changed when the decision was made to switch to Meego or not.
Meego.org mentions a "security architecture":http://meego.org/?s=security as well.
-
[quote author="frgo" date="1284427094"]Thanks for your answer, I´m looking for using QtWebKit over MeeGo...I believe it will behave like Maemo, right?[/quote]
Yes :) At the moment Maemo has no real security model - and I really think us the developers should be happy for that and enjoy it while it lasts :)
Did you guys know the N900 users count for a significant % of the overall downloads of apps by Nokia users - even though the percentage of N900 users is very small? There are several reasons for that, but this is one of them - developing, deploying and installing apps is a lot easier as there is no complicated signing method to stop it all.