Is There Room For a Secure Web Browser? 222
An anonymous reader points out an eWeek story about researchers from the University of Illinois at Urbana-Champaign who are designing a new web browser based on security. The new software, code-named OP for Opus Palladianum, will separate various components of the browser into subsystems which are monitored and managed by the browser kernel. Quoting:
"'We believe Web browsers are the most important network-facing application, but the current browsers are fundamentally flawed from security perspective,' King said in an interview with eWEEK. 'If you look at how the Web was originally designed, it was an application with static Web pages as data. Now, it has become a platform for hosting all kinds of important data and businesses, but unfortunately, [existing] browsers haven't evolved to deal with this change and that's why we have a big malware problem.' The idea behind the OP security browser is to partition the browser into smaller subsystems and make all communication between subsystems simple and explicit."
Yes, you can download one already... (Score:1, Funny)
In other news... (Score:5, Funny)
Re:Somewhat pointless? (Score:2, Funny)
I've got a secure web browser (Score:4, Funny)
Don't overlook the potential for abuse. (Score:2, Funny)
Just think of what Microsoft would like to do with UAC for your browser. "This website is not Microsoft signed, Cancel or Allow?"
Such a great idea (Score:4, Funny)
What I want to know is... (Score:5, Funny)
The super-duper-secure safe OS (Score:4, Funny)
OK, if you really want a truly secure safe OS (and by extension, to a browser mapped to the same address space), this is what you need in your OS:
Not one microkernel, for extra safety you need redundant nanokernels, with a microkernel over those, then the user kernel. To prevent buffer overruns, all messages passed between these are sent as emails, with spamassassin checking lest any of them get any ideas about sending spams.
OK, next you need lots of verification. Every time you write to disk there should be a second process to verify that what was written is correct. Then you need a process to check that the verifier process is checking things correctly. If memory doesn't run out while doing this, a body of processes should vote democratically as to whether the whole thing finished correctly. In case of collusion between the processes, some of them will be strictly dice rolls.
The least trusted part of the computer is the user, otherwise known as the "owner" of said computer. Thus, that person should not be allowed to do anything because that is a sure way to introduce problems. Harass that person with questions and popups at every opportunity. That will make sure they go out and read a book and not get in the way of the important things that the operating system is trying to do.
To prevent hardware from crashing any of the kernels, they must be separated by a special interface layer that works a lot like a chat room (IRC). What this means is that devices that speak the protocol correctly can connect and be listened to by the kernel(s). Those that misbehave or that use foul language are kicked off by the watchdog process. The watchdog process is watched by a bulldog process. Sometimes the bulldog just barks, other times the two are wrestling it out on the ground while the rest of the system waits for them to sort out their differences. Alas, such is the price of progress.
To further prevent buffer overruns, a new character encoding is introduced where a previously one-byte code now needs ten bytes to encode it. This means that buffers have to be ten times bigger and thus there is a lot more space before an overrun occurs.
Let me know if you can think of any more features to add to this future super-OS.
Re:Somewhat pointless? (Score:5, Funny)
Re:Somewhat pointless? (Score:4, Funny)
Like it's that hard to securely receive and render webpages. It's a trivial task. Anyone who says the contrary should get a reality check. It's very possible to program without bugs. That's what correctness tests are for. An if your tolkit sucks so much it has security holes, code your own lib from scratch.
Man, if only Samuel L Jackson were here... (Score:3, Funny)
Whiny-bitch-free version of the motherfucking link provided by parent. [eweek.com]
or
Really fucking easy, which is why we don't need a karma whoring bitch such as yourself providing the motherfucking thing.
or
About as easy as shutting your editorializing bitchass mouth motherfucker.
Re:Yeah, right. (Score:2, Funny)
Re:Somewhat pointless? (Score:5, Funny)
Or Opera in the IE 7/8 heydays, for that matter...
Re:Somewhat pointless? (Score:3, Funny)
Re:In other news... (Score:3, Funny)
Re:The super-duper-secure safe OS (Score:4, Funny)
Re:Somewhat pointless? (Score:2, Funny)
Re:Firefox = Money for kid that can't program (Score:2, Funny)
Re:What I want to know is... (Score:3, Funny)
Re:Somewhat pointless? (Score:5, Funny)
Ask not what else your 100 MB of RAM could have done for you, but what you could do with your other 1900 MB of RAM.
Like government, browsers could me more efficient with their resources. But think of your computer as a country in renaissance -- instead of worrying why you paid $100 for that hammer, question instead what the hammer may allow you to do whatever its cost.
(I'm only half-joking because I'm a satirist, not a realist...then I'd be half-serious.)
Re:We do not have a malware problem. (Score:2, Funny)
Never mind [slashdot.org]
Re:Government model (Score:3, Funny)
Let all the processes be fully independent, evolving and with absolutely no regulations whatsoever. Give them 100 bucvk (virtual money). They will, according to economists, evolve into free market practically immediately. After that the free market will solve every problem in the most efficient way possible. Security will therefore be better than is possible with any other method.
Re:Somewhat pointless? (Score:3, Funny)
Re:anchient debate (Score:3, Funny)
I HURD [gnu.org] that this project got delayed.