Someone asked last weekend what things we can do to effectively secure IoT/Cloud: 1.) auto update 2.) sandbox runtime But mostly #1
-
-
@slightlylate Nobody talks about perfect, but slapping a web based UI on top of a Linux kernel without much else isn't the right path IMHO. -
@nasko: the web is the only functional security model we've got. So, to the contrary, actually that's our best hope; see CrOS - 3 more replies
New conversation -
-
-
@slightlylate@nasko auto-updates should be for surviving threat model changes. But it shouldn't be an excuse to ship insecure designs -
@slightlylate@nasko heck, you yourself point out sandboxed runtime as a req too. I would modify auto-update to secure, reliable auto-udpate - 2 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
& Web Standards TL; Blink API OWNER
Named PWAs w/
DMs open. Tweets my own; press@google.com for official comms.