On 08/06/2013 02:53 PM, Patrick Ohly wrote:
> Yes you can. Each identity includes an access control list of
> executable paths that are allowed to use it (the creator of the
> identity is added there by default). When you create and store an
> identity, add all the executables that will use it to the ACL (the
> creator of the identity can also update the list later). On Tizen,
> SMACK labels are used instead.
For my own reference:
Oh, and something I've found out just now: there is a wildcard which you
can place into the ACL ("*" for both system and app context) when
creating the identity. Then the ACL check is off. I haven't tested it,
but it should work.