[Gpephone-devel] package management and security

[Dirk Sigurdson]

I'm wondering what people's thoughts are for package management on G 
(PE)^2.  Does it make sense to include the gpe-package utility from  
GPE?  One thing that could be important from both an end user  
security perspective and potentially from a carrier support  
perspective is being able to restrict the content that is installed  
on the phone.  The LiPS security spec has some stuff on adding  
digital signatures to ipkg's that we should probably investigate.

Additionally, we may want to think of ways that we could sandbox  
"untrustworthy" applications to restrict them from accessing critical  
system resources.  For example, we'd want to try to prevent a trojan  
from constantly sending out SMS messages by writing to the serial  
device or by asking the phoneserver to do it on its behalf.

Dirk