N950/Aegis-notes

Aegis is a security framework that differs significantly from normal Unix, though sharing ideas from SELinux.

There is a lack of documentation on what the security framework is intended to address, and how it is intended to be configured.

There are three broad classes of issues it raises to address.

End Users
What limitations does it pose on software that developers can write for users for the N9.

For example, if the developer wants to compile a new kernel with more iptables modules available, or to expose more hardware features, what are the implications?

Can Aegis run at all in this environment? What are the implications if Aegis cannot run - what stops working? Is it just (for example) Angry Birds, or does this include Maps, and other software.

Developers
While Aegis is a powerful platform for security, it raises issues for lower-level developers trying to understand the device, and trying to prototype code.