Confirmed users
1,982
edits
Mozilla 2/Protected mode: Difference between revisions
Jump to navigation
Jump to search
→Overview and Motivations
(→Owners) |
|||
| Line 8: | Line 8: | ||
* {{bug|396196}} | * {{bug|396196}} | ||
= Overview and Motivations = | == Overview and Motivations == | ||
' | |||
Integrity is a new security concept intorduced in Windows Vista. Securable objects within the system, including applications and their associated windows, directories and files, and registry keys have an integrity level associated with them. The general rule of integrity is defined as "no write-up", implying applications with a lower integrity level do not have security rights that allow access to objects with a higher level. In addition, objects running at a low integrity level often have "no read-up" rules applied which restrict access completely. Restrictions are independent of user level security restrictions. | |||
Firefox 2.0 currently runs at the default "medium" integrity level. The goal is to add support for running at both low and medium integrity without adversly effecting the browser's usability or user experience. | |||
Three broad goals summarize the work required: | |||
* Research into the areas of the Fx codebase that will be affected in some way. | |||
* Add support for an exe launch shim ("broker") for Firefox which will facilitate better OS integration, including better, more secure protocol handling, application startup, and a more reliable DDE interface. | |||
* Augment the functionality of the broker so that Firefox can interact with the system while running at a low integrity level. | |||
== Potential Areas Affected / Issues == | == Potential Areas Affected / Issues == | ||