diff options
| author | TreeHugger Robot <treehugger-gerrit@google.com> | 2020-08-27 21:53:54 +0000 |
|---|---|---|
| committer | Android (Google) Code Review <android-gerrit@google.com> | 2020-08-27 21:53:54 +0000 |
| commit | 81a42f6482e4320f1de97bd6a18f53f9dfd92d64 (patch) | |
| tree | f593c66ccbef6684b65882903f82937ca0d0ce06 /9_security-model | |
| parent | d3a790d1c42a6cfcf1a2db4fc11bb92d751c4042 (diff) | |
| parent | 333848a5b040470c49130bc1c32c4df1a14ee1f3 (diff) | |
| download | platform_compatibility_cdd-81a42f6482e4320f1de97bd6a18f53f9dfd92d64.tar.gz platform_compatibility_cdd-81a42f6482e4320f1de97bd6a18f53f9dfd92d64.tar.bz2 platform_compatibility_cdd-81a42f6482e4320f1de97bd6a18f53f9dfd92d64.zip | |
Merge "CDD: Requirements for Blob Sharing Service." into rvc-dev
Diffstat (limited to '9_security-model')
| -rw-r--r-- | 9_security-model/9_8_privacy.md | 27 |
1 files changed, 26 insertions, 1 deletions
diff --git a/9_security-model/9_8_privacy.md b/9_security-model/9_8_privacy.md index 98627f5a..7049c8e9 100644 --- a/9_security-model/9_8_privacy.md +++ b/9_security-model/9_8_privacy.md @@ -260,4 +260,29 @@ impact, they: * [C-SR] Are STRONGLY RECOMMENDED to have a developer setting defaulted to disabled. The AOSP meets this by providing the `Enable verbose vendor logging` option in developer settings to include - additional device-specific vendor logs in the bug reports.
\ No newline at end of file + additional device-specific vendor logs in the bug reports. + +### 9.8.11\. Data blobs sharing + +Android, through [BlobStoreManager]( +https://developer.android.com/reference/android/app/blob/BlobStoreManager) +allows apps to contribute data blobs to the System to be shared with a selected +set of apps. + +If device implementations support shared data blobs as described in the +[SDK documentation](https://developer.android.com/reference/android/app/blob/BlobStoreManager), +they: + + * [C-1-1] MUST NOT share data blobs belonging to apps beyond what they + intended to allow (i.e. the scope of default access and the other access + modes that can be specified using + [BlobStoreManager.session#allowPackageAccess()]( + https://developer.android.com/reference/android/app/blob/BlobStoreManager.Session#allowPackageAccess%28java.lang.String%2C%2520byte%5B%5D%29), + [BlobStoreManager.session#allowSameSignatureAccess()]( + https://developer.android.com/reference/android/app/blob/BlobStoreManager.Session#allowSameSignatureAccess%28%29), + or [BlobStoreManager.session#allowPublicAccess()]( + https://developer.android.com/reference/android/app/blob/BlobStoreManager.Session#allowPublicAccess%28%29) + MUST NOT be modified). The AOSP reference implementation meets these + requirements. + * [C-1-2] MUST NOT send off device or share with other apps the secure hashes + of data blobs (which are used to control access).
\ No newline at end of file |