Vendor : University of Washington
E-mail this page
Related Content
Remember this itemFormat: PDF
Date:
24/04/2009
The Security Architecture of the Chromium Browser
0
0 votes
Overview
Most current web browsers employ a monolithic architecture that combines "The User" and "The Web" into a single protection domain. An attacker who exploits arbitrary code execution vulnerability in such a browser can steal sensitive les or install malware. This paper presents the security architecture of Chromium, the open-source browser upon which Google Chrome is built. Chromium has two modules in separate protection domains: a browser kernel, which interacts with the operating system, and a rendering engine, which runs with restricted privileges in a sandbox. This architecture helps mitigate high-severity attacks with-out sacrificing compatibility with existing web sites. It defines a threat model for browser exploits and evaluates how the architecture would have mitigated past vulnerabilities.
See also: Intrusion - Tampering, Security Administration
Related whitepapers
- MSDN Webcast: Internet Explorer 8 for Developers (Level 200)
- MSDN Webcast: Silverlight Controls Framework (Level 100)
- Leading TV and Online Sports Broadcaster Raises the Bar With Microsoft Silverlight
- Web Technologies Help MTV Networks Create Dynamic Website and Improve Global Workflow
- Organizing Bookmarks With Firefox to Save Screen Space
- Internet Explorer 8 Technology Overview for Enterprise and IT Professionals
- The Department of Defense and Open Source Software
- The Multi-Principal OS Construction of the Gazelle Web Browser
- Building Interactive Web Applications Using Stored Processes
- What's New in Internet Explorer 8?
|
|
|
|
ZDNet Asia Top Tech 50 Index
AT&T- Asustek
- Canon
- Convergys
- Ericsson
- Hewlett-Packard
- Infosys
- LogicaCMG
- NTT
- Samsung
- SingTel Group
- Toshiba
- Xerox
- Accenture
- Atos Origin
- Capgemini
- Dell
- France Telecom
- Hitachi
- Intel
- Microsoft
- Nokia
- Satyam Computer Services
- Sony
- Verizon Communications
- ZTE
Overwhelmed by consolidation? Take it in steps.
Learn the 5 steps to data center consolidation - download the whitepaper now.
Choose a career with Accenture in Singapore
A dynamic job opportunity where technology and business intersect
Choose a career with Accenture in Malaysia
A dynamic job opportunity where technology and business intersect
NetIQ DRA live demonstration:
Learn how to improve your efficiency when administering Active Directory
The Roots for a Greener World
Discover Hitachi's Environmental Vision 2025 and featured Eco-Products
The Desktop Virtualization Revolution is here!
Find our more with Citrix Simplicity is Power
Lack of visibility into network issues and performance?
Find out today. Download SolarWinds FREE 30-Day Trial Software here.
IT Salary & Skills Report 2009
Join activeTechPros for free access to the report
- ZDNet.com |
- ZDNet Japan |
- ZDNet.de |
- CNET UK |
- CNET.de |
- Tech Republic |
- BNET |
- MP3.com |
- activeTechPros |
- ZDNet UK |
- ZDNet Korea |
- ZDNet France |
- CNET Australia |
- CNET France |
- Download.com |
- Builder |
- GameSpot
- ZDNet Australia |
- ZDNet Taiwan |
- CNET |
- CNET Taiwan |
- News.com |
- Silicon.com |
- TV.com |
- GameSpot Korea
