I've recently read the [chromium sandbox architecture overview] and the [multi process architecture high level design].
The developers claim they run the tabs and web apps in a privileged external process for 2 main reasons:
1) Prevent the browser from crashing in case a tab or a web app crashes.
2) Various security reasons.
The security reasons I read about were mostly about changing the user's system configuration via Win32 API.
Now let's assume I develop a web browser that uses Webkit and V8 JS Engine and **does not allow** browser extensions and flash to be executed from within the browser.
Furthermore let's assume that application crashes are not an issue.
1) What advantages do I gain by implementing the sandbox architecture?
3) What are the other security concerns I'm not aware of?
以上就是Sandboxing a browser that runs HTML & JS Only的详细内容，更多请关注web前端其它相关文章！