There's some truth in the Czechoslovakian proverb I used for the title of this post, as we've been recently discussing in designing how to deal with security issues in itsme OS. We realized there's a huge amount of possibilities and of different factors influencing strategies that can be adopted, and (in our case) they're multiplied by the fact that we're designing a complex system, with a lot of potentially vulnerable points. I won't go into technical details, but just present the main points our discussion started from. It seems that all existing operating systems are not entirely secure, and they're...
itsme is an open source project, but this does not mean that contributing directly on our code will be the only way to integrate new ideas into our system. We have designed (and we are implementing) an architecture that allows extensions to be easily integrated, like simple plug-ins. The basic idea is quite simple: developers will be allowed to create bundles, packages to distribute customized applications or itsme components (e.g., new channels for itsme venues, possibly devoted to peculiar aims). These bundles will include a subset of the parts presented in the diagram below:
According to itsme system architecture, developers will...
