Does Google Gears expose your data to desktop security problems?
Google just kicked off another new product to offer offline web applications. There’s a simple plugin that’s available as a free download under a BSD license. It works for:
- Safari (almost!)
(With Safari it works if you build Safari’s webkit from source.)
As for operating systems it supports the big three:
The first example showed Google Reader being used offline. It grabs the last 2000 feeds. The pain point is you have to tell it you’re going offline, so the syncing is a bit manual. There’s actually a tiny button to toggle. They seem to understand it just needs to know when you are offline or online and handle the syncing automatically.
SQLite is the offline database engine and it can handle full text searches of millions of documents.
Finally, the security bullet showed up. It has the same strict-origin security model.
- A web page with a particular scheme, host, and port can only access resources with the same scheme, host, and port.
- Using the Google Gears plugin is explicit and the user has to opt-in.
They didn’t address the main issue that will concern corporate IT security folks, but it is discussed on their security page:
On the other hand, two people using the same OS login could theoretically access each other’s Gears data files, just as they could access any other file on the machine.
– Google’s Security Documentation for Google Gears
The nasty scenario is one of your salespeople downloads a few hundred thousand customer records to their own machine. With traditional web applications the data never leaves the server other than to display small sections say in a search results page. With a local database cache you’re carrying around a copy of all of that information.
Looks like we’re going to see a big push for offline web applications.
Good to see developers are already realizing this issue needs to be figured out.