The new sandbox approach in web browsers increases security, A powerful new approach to using a web browser using a tool called WebAssembly gets its first real application in the Firefox browser.
The new approach is now part of the Firefox browser test suite for the Linux operating system and can be available on Windows and MacOS platforms for several months.
The web browser uses a code library to perform general activities such as viewing media files, including photos, videos and audio. However, these libraries often have undeclared bugs that hackers can use to control computers. The new sandbox approach in web browsers increases security.
Modern browsers are a terrible security scenario, researchers say. They have every function that can be displayed.
The more functions you have, the more errors that occur. And the more bugs there are, the more likely an attacker to harm someone’s device. Attackers like to attack browsers and they really understand how to do it.
To prevent hackers from exploiting this vulnerability, researchers have adapted WebAssembly, a security mechanism that was originally developed to speed up the execution of web applications in the browser and to keep these applications in a “safe sandbox” that prevents malicious code from the user’s computer. The new sandbox approach in web browsers increases security.
Applications that benefit from WebAssembly include games and applications that stream music, edit videos, encrypt, and recognize images.
The researchers’ new approach moves some internal browser components, which are responsible for decoding media files, into the WebAssembly sandbox.
The researchers’ approach, known as the RLBox framework, is explained in a document (“Provision of fine grains in the Firefox rendering”), which will be presented at the USENIX security symposium in August.
This new approach was initially applied to the trial version of Firefox for the Linux operating system and only offers a rendering library used for certain fonts. Assuming that the first test went well, the team expects the approach to be gradually expanded to include stable, full browser versions of all major operating systems. The new sandbox approach in web browsers increases security.
They also provide for future expansion to include other components involved in viewing media files.
If the first test works well, Firefox can apply this to all image, video and audio formats supported by the browser, the researchers said. The hope is that eventually all errors in these libraries will become unusable for Firefox hacking. In this case, consumer safety significantly increases. The new sandbox approach in web browsers increases security.
Over time, this can increase security for millions of users around the world because more parts of the browser receive these improvements and are included in more operating system versions.
There are around 250 million active users per month in the Firefox browser on the desktop.
said the researcher. To keep our users on the Internet, we must ensure that programming errors cannot easily endanger the browser. So far, the industrial approach to this problem is very rough, which limits its effectiveness. We are very pleased to be able to offer our users a new level of isolation offered by RLBox.