Security/ProcessIsolation: Difference between revisions

No edit summary
Line 4: Line 4:


Reduce the damage for various types of vulnerabilities within Firefox.  This is a defense in depth measure.
Reduce the damage for various types of vulnerabilities within Firefox.  This is a defense in depth measure.
We will do so by:
* identifying high level of categories of threats that we could address via process isolation
* determining the architectural implications of mitigating each category
* selecting a threat model and architecture that will address it, and prototyping it
* determining whether the chosen model is actually feasible within the current Gecko architecture
* implementation roadmap
* implement it


== Roadmap ==
== Roadmap ==
Confirmed users
717

edits