Page 1 of 7 1 23 Last »
Reply
Thread Tools Search this Thread
momcilo is offline momcilo
09-12-2011 , 06:58 PM
Posts: 673 | Thanked: 836 times | Joined on Mar 2006
#1
It was mentioned several times, I've decided to create this thread to determine what is aegis, and how it will affect us.

In short aegis is actually part of:
Mobile Simplified Security Framework (MSSF)

EDIT: Renamed the topic title.
EDIT2: Renamed again
__________________
http://gpl-violations.org/faq/violation-faq.html
Last edited by momcilo; 09-14-2011 at 05:12 AM.
 

The Following 4 Users Say Thank You to momcilo For This Useful Post:
AlMehdi is offline AlMehdi
09-12-2011 , 07:07 PM
Posts: 1,751 | Thanked: 836 times | Joined on Feb 2010 @ Sweden
#2
Aegis is the new security framework of Harmattan. A pain in the *** if you ask me.
__________________
You like what i do? Donate!

Make your desktop look awesome - use the AwOken Theme with the AwOken Icon Theme.

Add me on twitter @almehdin
Visit the swedish maemo/meego community forums
 

The Following User Says Thank You to AlMehdi For This Useful Post:
Radicalz38 is offline Radicalz38
09-12-2011 , 07:09 PM
Posts: 1,041 | Thanked: 421 times | Joined on May 2010
#3
If you ever used symbian it's more of the security thingy they made that you cannot install unsigned applications.
 

The Following User Says Thank You to Radicalz38 For This Useful Post:
Acidspunk is offline Acidspunk
09-12-2011 , 08:05 PM
Posts: 367 | Thanked: 234 times | Joined on Nov 2010
#4
Do you need to have a certificate and sign all your apps like symbian? That was a major pain in the ***. Especially for homebrew apps.
 

The Following User Says Thank You to Acidspunk For This Useful Post:
marxian's Avatar
marxian is offline marxian
09-12-2011 , 09:40 PM
Posts: 2,131 | Thanked: 7,641 times | Joined on Aug 2010 @ Wigan, UK
#5
You don't need to sign applications, but applications need to request permission to access the tracker, use dbus etc. This is done by including a .aegis file in your .deb package that uses an XML-like syntax.
__________________
MusiKloud - A SoundCloud client for the Nokia N9

cuteTube - YouTube and Dailymotion client.

MeeFolders - Organise your N9 applications into folders.

Hildon Event Feed - Event Feed application and homescreen widget.

toBuntu - Ubuntu One client.

QDL - GUI download manager.
 

The Following 16 Users Say Thank You to marxian For This Useful Post:
Radicalz38 is offline Radicalz38
09-13-2011 , 01:30 AM
Posts: 1,041 | Thanked: 421 times | Joined on May 2010
#6
Still same like symbian...

Symbian = Without .cer & .key to sign your sisx files = No Permission
Meego = Without .aegis to include in your deb files = No Permission
 

The Following 2 Users Say Thank You to Radicalz38 For This Useful Post:
tuxsavvy is offline tuxsavvy
09-13-2011 , 03:05 AM
Posts: 483 | Thanked: 328 times | Joined on Jun 2010 @ Brisbane, Queensland, Australia
#7
Aegis here in detail thanks to joerg_rw. Paraphrasing some quotes (from infobot on #maemo IRC channel):
Originally Posted by infobot
The purpose of this framework is: ... to make sure that the platform meets the requirements set by third party software that requires a safe execution environment.
More information is also available on wikipedia according to infobot
__________________
  • IRC handle: psycho_oreos
  • 3 x Nokia N900 | 2 x 32GB TopRAM microSDHC class 10 inserted in two devices | 2 x SIM cards inserted in two devices.
  • N900/ Nokia N900 is not a phone/smartphone! its an internet tablet with phone functionality - so quit assuming its still a phone/smartphone when it isn't!!
  • Help fight spam together!
 

The Following 4 Users Say Thank You to tuxsavvy For This Useful Post:
ajack's Avatar
ajack is offline ajack
09-13-2011 , 03:36 AM
Posts: 255 | Thanked: 146 times | Joined on Oct 2010 @ Petaling Jaya, Selangor, Malaysia
#8
Thanks for this discussion, am skipping the N9 then... I saw how such a mechanism killed UIQ3 on Symbian...
__________________
Visit my blog at http://lifewithmaemo.blogspot.com or my website at http://www.renegade-uiq.com
 

The Following 3 Users Say Thank You to ajack For This Useful Post:
momcilo is offline momcilo
09-13-2011 , 04:58 AM
Posts: 673 | Thanked: 836 times | Joined on Mar 2006
#9
Originally Posted by marxian View Post
You don't need to sign applications, but applications need to request permission to access the tracker, use dbus etc. This is done by including a .aegis file in your .deb package that uses an XML-like syntax.
Thank you for pointing me to the right direction. The first time the aegis was mentioned I've failed to find online documentation (either due to the missing "dbus" keyword or it simply was not there)

For all interested Harmattan documentation on security is here.

The information on aegis syntax is here.


So far it sounds like TPM, which if it is true s*** big time.
__________________
http://gpl-violations.org/faq/violation-faq.html
 

The Following User Says Thank You to momcilo For This Useful Post:
javispedro's Avatar
javispedro is offline javispedro
09-13-2011 , 05:06 AM
Posts: 1,890 | Thanked: 3,248 times | Joined on Jan 2009 @ Barcelona
#10
Sadly, the problem with Aegis comes with its policy; currently, you are still to see <sarcasm> "the best of it" </sarcasm> : its current policy is rather allowing to applications from the unknown source (aka unsigned applications).

How this policy will be in later firmwares is something I don't know. The hints that are in the current firmware's restok.conf file do not look good, but for the time being, I am giving them the benefit of the doubt.
 

The Following 8 Users Say Thank You to javispedro For This Useful Post:
Reply
Page 1 of 7 1 23 Last »

Tags
1984--today, locked boot, neutered, trecherous

« Previous Thread | Next Thread »
Thread Tools Search this Thread
Search this Thread:

Advanced Search

 
Forum Jump


All times are GMT -4. The time now is 03:26 AM.

Contact Us - Home - Archive - Top