On 09/10/2013 10:58 AM, Paul Theriault wrote:
My proposal makes its more difficult for someone with physical access to a
phone without a passcode to steal sensitive app data. If we limit which apps
you can debug as I described above, in order to get access to app data, you
still need root access to the phone. If we allow access to debug all apps,
this bar is lowered, so that you can access the app data by enabling debugging.
If the phone is stolen and no passcode is set, then I can access app
data by starting the apps, too. I have access to any web accounts those
apps might be tied to, and so on. Aren't the dev tools just a rather
painful method of doing what our UI people are trying to make as easy
and as pleasant as possible via other means?
_______________________________________________
dev-b2g mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-b2g
