UI security topic: UI for private activities

Fania Bremmer fania.bremmer at basyskom.com
Mon Jan 16 16:09:29 UTC 2012


Hi there,

In the last days we had a lot of discussions about the security topic.
In my team we already had a look how the UI dialogs could look like and 
in last fridays telco we talked about that as well.

So here my current findings presented in a flowchart regarding "private" 
(means encrypted) activities:
http://share.basyskom.com/contour/UIDesign/flowchart_PrivateActivities.pdf

Asumptions:
- Mark Activity as private: toggle Button in "Create new activity" and 
"Activity Configuration" Dialog; details see flowchart
- Open Private Activity in switcher: after tap a pw dialog appears 
(similar to delete dialog); see validation details again in flowchart;  
currently we still have a resize issue here, see 
https://bugs.kde.org/show_bug.cgi?id=288426
- Most discussed topic has been the re-encryption of private activities 
in case of shutdown and lockscreen. My suggestion is the following:
1- after changing activity: last private activity encrypts again, 
requires again pw if switched back
2- after shut down: all private activities encrypt again, pw needed for 
every private activity
3a- after manual or automatical screen lock while private activity is 
running: pw dialog in lockscreen is required to open the current private 
activity. Unlock with normal activity running doesnt require any pw, it 
behaves like Plasma Active currently does.
3b- there has been the idea that after locking, PA encrypts all private 
activities again and just shows the last "normal" activity as a 
fallback. What I dont like here, that the last normal activity can be 
completly random, so that for the user that wouldnt be a benefit, as he 
has been just working on the private activity.
3c- Another option would be that the uncrypted fallback is always the 
introduction activity, which can therefore be never private and can 
never be deleted. This would assure that we have at least one 
"normal/not private" activity in the system we can always fallback to. I 
dont like this option that much neither, because we would introduce some 
kind of homescreen, that we just wanted to get rid off ;)
- With all these passwords coming now into PA, I suggest having a 
security tab in our settings app with these options:
- device pw after shut down: toggle on/off; on is default (needs then to 
be entered in first introduction activity)
- edit pw for device pw
- device pw after lock screen: toggle on/off; off is default

So, feedback welcome to this subject.
Fania







More information about the Active mailing list