canmove, Confirmed users
1,220
edits
Security/Sandbox/Hardening: Difference between revisions
→Browser Hardening
Ptheriault (talk | contribs) |
Ptheriault (talk | contribs) |
||
| Line 27: | Line 27: | ||
The goal of hardening is to make the browser resilient, even when a content process is compromised. Having a strong sandbox in place is no use, if a weak trust model or IPC implementation flaw leads to trivial privilege escalation: | The goal of hardening is to make the browser resilient, even when a content process is compromised. Having a strong sandbox in place is no use, if a weak trust model or IPC implementation flaw leads to trivial privilege escalation: | ||
[[File:SandboxBypass.png| | [[File:SandboxBypass.png|framed|left|Sandbox Bypass]] | ||
To harden the browser against this sort of sandbox bypass, several efforts are underway: | To harden the browser against this sort of sandbox bypass, several efforts are underway: | ||