* JS engine presents the largest attack surface in the browser
'''Objectives''' <br>
* All untrusted javascript to be executed in the childTDB '''Controls'''<br>TDB
'''Open Question'''<br>
* What JS code is executed in the Chrome process?
* What JS contexts exist?
* Parent
** Firefox UI
** Js implemented web apis
** Web content
'''Controls'''<br>
tbd
'''Open Questions'''<br>
* Parts of service workers are currently executed in the parent.