Changes

Jump to: navigation, search

Roadmap Scratchpad

1 byte removed, 08:57, 1 November 2005
Miscellaneous platform improvements
== Miscellaneous platform improvements ==
In addition to the above new and enhanced capabilities, there are several important areas of improvement which that resist even the preceding attempt at categorization. They are no less important for that mismatch.
The security model for web content relies on careful management of trust labels, the mixing of which has long been known to security researchers as a source of significant danger. Also, Gecko's support for content with elevated privileges, derived from the Java privilege model from the time of Netscape 2, does not sufficiently distinguish between web applications which can be trusted to not spoof application UI or attempt to "drive by" extension installation, and those which seek to run arbitrary code on the host machine or perform unrestricted operations on the local filesystem. Building on successful research from the programming-language security community; lessons from Java and .NET; and our own person-centuries of experience building and reinforcing web security models, we seek to provide a richer and more reliable model of trusted execution, and especially "partially-trusted" execution.
Confirm
455
edits

Navigation menu