| Subject: Data access security in WinFS - Re: Spyware |
| Group: microsoft.public.windows.developer.winfx.winfs |
| Date: 3/5/2006 5:22:45 AM |
| From: "Mario Goebbels [489782]" [Email Address Protection] |
I've read the blog entry "WinFS Mailbox II", which cuts a bit into the topic of item security. However how will this be exposed by the UI? In my ideal world, items in the store would be assigned to application/system contexts. Each application can access its own context without restrictions. While other applications could search the files residing in other contexts, accessing them however would spawn a system dialog asking if you want to grant the application access to the single file, the whole context of the other application or plain out deny the access. Add a checkbox to make the decision permanent. This would put the data security in the hands of the user and notify him immediately when an application tries funny business. This would give for instance secure sensitive data of your Money version on WinFS the protection it needs while giving other applications the ability to access them under the control of the user. There should also be a system context, where the system files would reside, which are accessible by everyone under the control of the system, and a root context for global things that you want to be accessible without restrictions. That'd be contacts, mails and other insensitive items. Regards. -mg |
| Back |