2017-10-21, 13:00–13:40, Event Loft
Desktop application sandboxing is quite different than traditional
container isolation, learn how flatpak does it, using the concept of
Flatpak is a distribution independent bundling and deployment system
for Linux, focusing on desktop applications. One core aspect of flatpak
is application sandboxing, which has very different requirements on
the desktop than in the traditional container space. Applications need
to be isolated from the system, yet in order to be easy and intuitive to use
they must integrate with the desktop environment in complex ways.
Flatpak solves this by using a concept called Portals. This talk will
discuss how Flatpak sandboxing/security works and the how Portals fit
in this system.