Sandboxing a browser that runs HTML & JS Only

I've recently read the [chromium sandbox architecture overview][1] and the [multi process architecture high level design][2]. The developers claim they run the tabs and web apps in a privileged external process for 2 main reasons: 1) Prevent the browser from crashing in case a tab or a web app crashes. 2) Various security reasons. The security reasons I read about were mostly about changing the user's system configuration via Win32 API. Now let's assume I develop a web browser that uses Webkit and V8 JS Engine and **does not allow** browser extensions and flash to be executed from within the browser. Furthermore let's assume that application crashes are not an issue. 1) What advantages do I gain by implementing the sandbox architecture? 2) Can pure Javascript code access the memory\file system or invoke any unwanted windows API function? 3) What are the other security concerns I'm not aware of? [1]: http://www.chromium.org/developers/design-documents/sandbox [2]: http://www.chromium.org/developers/design-documents/multi-process-architecture

以上就是Sandboxing a browser that runs HTML & JS Only的详细内容,更多请关注web前端其它相关文章!

赞(0) 打赏
未经允许不得转载:web前端首页 » JavaScript 答疑

评论 抢沙发

  • 昵称 (必填)
  • 邮箱 (必填)
  • 网址

前端开发相关广告投放 更专业 更精准

联系我们

觉得文章有用就打赏一下文章作者

支付宝扫一扫打赏

微信扫一扫打赏