Changes

Jump to: navigation, search

Security/Sandbox/Hardening

7 bytes removed, 16:32, 6 January 2017
Graphics
'''Open Questions'''<br>
* Communication with GPU limits the restrictions that can be placed on child process
** Windows: access to GPU prevents the use of the Untrusted integrity level sandbox ** OSX: To be investigated ** Linux: To be investigated
* IPC code (IPDL & shared memory) represents an attack surface which needs to be hardened to ensure resilience to privilege escalation attacks
* No plans yet to sandbox Compositor process
* Will Quantum render afford opportunities to limit attack surface (e.g. can we ban windows GDI usage in content process)?
 
===DOM===
Tritter
121
edits
Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/1158752"

Navigation menu