Facebook Plunges Again
Tumblr 101: Tips And Tricks To Get Started
Google takes measures against malicious Chrome extensions, adds developer fee
With Chrome's Web app store about to launch and Chrome extensions skyrocketing in popularity, a little extra security makes sense. Right now, there's nothing keeping extension developers from introducing malware or using extensions to take over systems. Google is addressing this problem by adding a sign-up fee for developers and running domain verification for Chrome extensions. The fee is a one-time payment of $5, which isn't enough to discourage serious developers, but it's too much to throw away on a dummy account (or two, or 50). The same fee covers you for both the extension gallery and the upcoming app gallery. Domain verification is just what it sounds like: it allows devs to associate the extensions they create with their domain names. So, if you trust Google.com, you should be able to trust a Google.com extension.
It's not hardcore security or anything, but it's much better than what's in place now, and it's definitely going to be needed if Chrome apps turn out to be big.
Comments
10
Subscribe to commentsAemonyAug 19th 2010 4:41PM
Why not doing as Mozilla has and evaluate every extensions that gets submitted manually? If Mozilla can do it surely Google should also be able to do it...
MxxConAug 19th 2010 5:40PM
actually mozilla doesn't evaluate "every" extension manually.
one the ones that automatic scan flags with dangerous APIs or binary files.
SilverWaveAug 20th 2010 2:12AM
Google likes automated highly scalable solutions.
$5 is good, if he dev isn't prepared to pay it well I dont think I will trust his app.
:-)
Moz is introducing the new Jetpack and its manifest idea to help semi automate at least part of the process narrowing down the add-on permissions helps a lot.
MxxConAug 19th 2010 5:42PM
i highly disagree with Google regarding $5 policy.
if they do it to verify somebody's identity and confirm it w/ cc#, why do they charge $5...just do identity verification and that's it..
1st the whole china gov't backpedal, then net neutrality betrayal, and now this..
Google has gone full on evil :(
SilverWaveAug 20th 2010 2:08AM
you dont hapen to work for ms by any chance do you?
Just Saying.
MxxConAug 20th 2010 2:15AM
you are pretty pathetic if you think that if somebody disagrees with your point of view they must be a shill for MS.
if you would spend 5 seconds reading this site, you'd see exactly where i stand. and if you don't know how to read, no i don't work for ms.
SilverWaveAug 20th 2010 4:42PM
No no not at all... just as you were parroting the anti-Google line as if you were reading from a script I just thought I better check.
MannyAug 22nd 2010 4:43AM
You know what they say if you can't argue or debate on merits then beat them by destroying their credibility...quite sad, SilverWave sorry but you're an idiot playing the same old tricks. I think MxxCon and I like many wonder if google is overreaching these days, I think it's a valid concern many share if you're an informed individual, which surely your not.
SilverWaveAug 22nd 2010 7:05AM
Heh... Haters will Hate...
Its what the do.
SilverWaveAug 22nd 2010 7:10AM
Also re "if you can't argue or debate on merits" look at my
post at 2:12AM on 8-20-2010 for my input.
I don't see any reasoned response from your good self though ;-)
I am also willing to take MxxCon's word on this.
It is helpful asking though as if he was a shrill then lying about it online would be a serious no-no. Maybe not now but possibly down the line.