Confirmed users
717
edits
Necko: Electrolysis design and subprojects: Difference between revisions
Jump to navigation
Jump to search
Necko: Electrolysis design and subprojects (view source)
Revision as of 05:44, 23 September 2009
, 23 September 2009→Security Issues
| Line 106: | Line 106: | ||
= Security Issues = | = Security Issues = | ||
== Race conditions == | === Race conditions === | ||
* Could one frame navigate another frame without permission | * Could one frame navigate another frame without permission | ||
* Could one window script into another window without permission | * Could one window script into another window without permission | ||
== Domain isolation == | === Domain isolation === | ||
* Do we try to restrict cookies to per process / per window | * Do we try to restrict cookies to per process / per window | ||
| Line 117: | Line 117: | ||
* How do we handle access to file:// and related schemes... trusting content process might be too much (see below) | * How do we handle access to file:// and related schemes... trusting content process might be too much (see below) | ||
* If we do try to isolate, how do we verify the validity of a request (do we need to have a stateful proxy to determine which content is valid to access cross-domain and which isn't) | * If we do try to isolate, how do we verify the validity of a request (do we need to have a stateful proxy to determine which content is valid to access cross-domain and which isn't) | ||
* Can we do anything to protect cookies? Password manager? Cache? Local data store? | |||
== Do we want to check principals in the chrome process? == | === Do we want to check principals in the chrome process? === | ||
(heard on IRC...) | (heard on IRC...) | ||