Station Trusted Module Review Process

Sanity checks for module authors to ask themselves:

• Can the module run in home networks behind NATs?

Sandboxing and resource limits we need to have trust in:

• CPU usage

• Memory usage

• Network usage
  • Ideally, the limit should be configurable so that Station can tweak it.
  • We think 2-5mb/s is a reasonable static limit to get started. We can increase this limit for individual modules that need more.

• Writing to file system
  • where are the files stored
  • how much space is used
    • Ideally, the limit should be configurable so that Station can tweak it.
    • We think 10GB per Station, split across modules, may be a good place where to start.

Let’s create a table with all untrusted modules and how much allowances (network, disk) we promised to each one.