124
edits
Changes
→Graphics
'''Open Questions'''<br>
* Communication with GPU limits the restrictions that can be placed on child process
* IPC code (IPDL & shared memory) represents an attack surface which needs to be hardened to ensure resilience to privilege escalation attacks
* No plans yet to sandbox Compositor process
* Will Quantum render afford opportunities to limit attack surface (e.g. can we ban windows GDI usage in content process)?
===DOM===