Slashdot Mirror

← Back to Stories (view on slashdot.org)

New Sandbox Framework For Chromium Released

Posted by Soulskill on from the spicy-security dept.

Trailrunner7 writes "As applications have become more and more complex in recent years and Web browsers have evolved into operating systems unto themselves, the task of securing desktop environments has become increasingly difficult. And while there's been quite a bit of innovation on Windows security, advances in Unix security have been less common of late. But now, a group of researchers from Google and the University of Cambridge in England have developed a new sandboxing framework called Capsicum, designed specifically to provide better security capabilities on Unix and Unix-derived systems (PDF). Capsicum is the work of four researchers at Cambridge and the framework extends the POSIX API and introduces a number of new Unix primitives that are meant to isolate applications and users and handle rights delegation in a better way. The research, done by Robert N.M. Watson, Ben Laurie, Kris Kennaway and Jonathan Anderson, was supported by Google, and the researchers have added some of the new Capsicum features to a version of Google's Chromium browser in order to demonstrate the functionality."

6 of 109 comments (clear)

  1. Re:Chromium Browser? by Captain+Splendid · · Score: 4, Informative

    I'm relatively new here. Is this how most people are on this site?

    Yes, it's considered SOP not to read TFA around here. The real hardcore don't even bother reading TFS either.

    --
    Linux, you magnificent bastard, I read the fucking manual!
  2. Re:Chromium Browser? by spoilsportmotors · · Score: 5, Funny

    I'm astounded that you - or anybody else would agree with RIAA's heavy handed tactics. For shame.

  3. Re:Academic Foolishness by Anonymous Coward · · Score: 5, Insightful

    I presume that you didn't actually read the API man pages. The interface follows squarely in the footsteps of the Unix design philosophy. No PID semantics are being changed, either. They've introduced process descriptors which, among other things, allow you to poll for process exit. They allow you to attach restrictions to descriptors, presumably so that a broker could open resources (files, sockets), restrict the allowable operations, and then pass them to sandboxed applications over a domain socket. It's all quite simple and powerful and exactly what I would love to see incorporated into POSIX.

  4. Re:Academic Foolishness by IamTheRealMike · · Score: 5, Insightful

    Both Android and ChromeOS are based on UNIX but neither expose POSIX as an API, so researching ways to change for the better seems like a good use of time.

  5. Erm, what? by SanityInAnarchy · · Score: 4, Informative

    Chromium is the open source version that Chrome, the proprietary browser, is built on. (Basically, they take Chromium, add codecs they can't legally include in Chromium, maybe a little branding, and release it as Chrome.)

    The same is true of the OS -- the only reason it's "Chromium OS" is that the actual "Chrome OS" hasn't been released yet, because the community version isn't done yet.

    --
    Don't thank God, thank a doctor!
  6. Re:Chromium Browser? by Tumbleweed · · Score: 4, Informative

    The REALLY really hardcore don't even bother reading the comment they're responding to

    I like pie.