Google Is Grooming Chrome As a Game Platform

An anonymous reader writes with this snippet from Conceivably Tech: "On Friday I noticed that Google is heavily pushing New Game, a game developer conference that is focused on HTML5-based gaming content — and, of course, content that runs in web browsers. The fact that such an event already exists and that there is game content being developed in HTML5, is quite stunning by itself. However, Google also noted that a sandboxed native client (NaCl) with 3D (in addition to 2D) will be available in Chrome soon, which will allow the browser to connect to traditional C and C++ code via its integrated Pepper API."

The very sadness of it all

I know Commander Taco used to like games, and now he's not alive to see this. Very sad.

Re:The very sadness of it all

[Cyko_01]

he is alive, just not an editor for slashdot anymore

Re:The very sadness of it all

looks like you missed the funny

Re:The very sadness of it all

[eexaa]

he is alive, just not an editor for slashdot anymore

that makes a fate worse than death.

Re:The very sadness of it all

On the bright side, at least he outlived Jobs by 24 hours.

Re:The very sadness of it all

No he's not. Timothy obviously killed him and any other /. editor. Has anyone seen any posting other than "by timothy" since the supposed resignation post by allegedly Commander Taco?

Re:The very sadness of it all

[davester666]

Who?

Re:The very sadness of it all

he's a lot more alive than html5!

Boom

BOOM BOOM BOOM.

The browsers will start crashing in spectacular ways again :(

Re:Boom

[ThePhilips]

Crash in best case. In worst case - a silent exploit of the sandbox and infection of system.

Honestly, do we really need the ActiveX all over again? Or history wouldn't be history without repeating itself?

Re:Boom

[fuzzyfuzzyfungus]

Arguably, we Do Not need ActiveX all over again; but we do need an (actually competent) implementation of what things like ActiveX were trying to accomplish...

While it is possible, and sometimes desirable, to increase security just by paring away as much power as you can get away with, that doesn't fly in the broader market. People want their games, and their videos, and whatnot. If they can't get them in-browser, they'll get them by downloading every friendly .exe that somebody offers them, which isn't exactly a triumph of security(particularly since prompting for elevated rights is standard behavior for installers...)

If you cannot protect somebody from something running in-browser, you don't actually solve the problem by not trying, you just shove it off onto the OS, which hasn't shown a brilliant track record of protecting people from the things they run, and offers less convenience in things like install/uninstall/update/synchronization...

Turning it on, without prompts, for all domains, by default, unless you are very, very certain is, of course, a terrible plan; but there is nothing fundamentally more hopeless about protecting people from browser plugins than protecting people from downloaded binaries, and history suggests that if they can't have what they want from the former, they'll enthusiastically click through whatever the latter asks them for...

Re:Boom

[ThePhilips]

you just shove it off onto the OS

But we already did and it is widely accepted: anti-virus software.

which hasn't shown a brilliant track record of protecting people from the things they run,

But that the point of the responsibility separation. If user explicitly wants it, then you can't do anything against it - against the will of user. After all, computer exists to fulfill the commands given by the user.

You are sending us back to the old Outlook dilemma: how to send installer of a hot fix to a customer who urgently needs it? Because Outlook too can police attachments and instead of giving AV software a chance, simply drops anything with extension .exe. Or any archive which contains an .exe file. Or anything what looks to Outlook even remotely suspicious.

But you are sort of suggested solution: this Google's effort should be concerted with the AV vendors. Or the effort would go either the way of ActiveX (permanently disabled) or the way of Outlook (let's be smarter than user, making software in the end even more useless than it was to begin with).

Re:Boom

[RobbieThe1st]

I would argue that this is doable: we now have a very good handle on sandboxing applications, and we even have good, almost-native-performance VMs. If we can make it so that all untrusted apps automatially run in a sandbox or VM, then this will work. So long as the "least work" state has the application running in a sandbox, that will prevent 90%
of infections through this vector.

Also, don't forget the fact that this will run cross-platform, and thanks to qemu(if it's x86 bytecode), on other arch's as well! So long as the Pepper API and source code is available, I can't see any problem with it. It will basically put *all* OS's on the same footing, without quite so much in the way of hacks like Wine. ...And who wants to bet that this api uses OpenGL/webGL instead of DirectX, at least internally?

Re:Boom

[pspahn]

But we already did and it is widely accepted: anti-virus software.

Ha. AV software is an old dog that should be taken for a walk.

The very stupidity of it all

Google wants to introduce x86 native code to the web at the time when ARM platforms are attracting all the buzz. This is a step backwards, akin to Flash or ActiveX.

Re:The very stupidity of it all

[Goaway]

Actually, Google wants to introduce LLVM bytecode, which will run on both x86 and ARM. They're making an OS for ARM processors, you know, they are aware it exists.

x86 is just the first step on the way.

Re:The very stupidity of it all

*cough* http://www.chromium.org/nativeclient/reference/arm-overview

Yes, there is one for ARM. It uses a different strategy to the NaCl for x86 (no segment registers -- mercifully -- on ARM). And, no, it's not ActiveX.

Re:The very stupidity of it all

[JonySuede]

worst than flash (flash running in a vm and vm are usually portable), equals to active X

Re:The very stupidity of it all

https://secure.wikimedia.org/wikipedia/en/wiki/Virtual_Processor

Been there seen it done it.

Chris

Re:The very stupidity of it all

Mod parent up _please_

Re:The very stupidity of it all

Google wants to introduce x86 native code to the web at the time when ARM platforms are attracting all the buzz.

This is not correct. Read the docs: http://code.google.com/p/nativeclient/

There is a working x86 implementation. There is also a processor-independent implementation, which uses LLVM byte code. They use that same API: The non-assembly parts of your code are one recompile away from moving to a platform-neutral format.

Re:The very stupidity of it all

[StripedCow]

If only they let the bytecode access directly the underlying opengl graphics primitives, we could implement our own rendering engines in this bytecode language and be done with html5 compatibility problems forever... (of course assuming that other browser vendors will use the same bytecode).

Write once, run anywhere?

[Uncle+Ira]

So is Chrome Google's current attempt to finally cut Java out of their web application strategy?

Re:Write once, run anywhere?

[cgenman]

HTML 5 and Javascript achieve that well. What native client gets you is SPEED.

Re:Write once, run anywhere?

ahhh... "Write once, run anywhere"... haven't seen that shit since the late nineties..

"thanks" for the memories asshole...

Does anyone

[phantomfive]

Does anyone else see this as a giant security hole? As in, various schemes like this have been tried since the days of ActiveX, and the only reason ActiveX has the worst reputation is because it's the only one that gained widespread use?

Re:Does anyone

[obarthelemy]

Yes. But, if they go for the locked ecosystem that seem to become so popular these days, they can try and solve the problem at the source.

Re:Does anyone

No. Native Client's security has been discussed ad nauseum and is many times more sophisticated than ActiveX's (which basically amounted to a yay/nay pop-up). There is code verification, multiple sandbox layers, and a secure API that exposes functionality to a NaCl app. In theory its as secure as running Javascript, but at native speeds.

Re:Does anyone

That's damn wrong.
ActiveX's widespread usage is NOT the only reason. The most significant reason is that ActiveX had basically NO security - one wrong decision by the user and their whole system is compromised. There is no "sandbox filesystem actions" like in Java model for instance. The second glaring issue is that the user does not always gets to decide - lots of objects were marked "safe for scripting" - that is for use from JavaScript, when in fact their interfaces never meant to be secure.

Re:Does anyone

[Nov8tr]

Yeah, 5000 Chinese hackers licking their lips and going ahhhhhhhhhh.

Re:Does anyone

[Goaway]

I'm sure there are other people who also have not made the tiniest effort to read up on the security mechanisms of NaCl, and think the same as you.

Re:Does anyone

[JonySuede]

There is code verification

If there is code verification for it to succeed, you must only allows a subset of X86 to be run else you run into the halting problem. If you only allow a subset you don't get native speed, you get the speed that your subset of instructions allows.

multiple sandbox layers

not native speed as to sandbox you must create a vm like system.

a secure API

Prove it, because of the halting problem isomorphism. A hint: design your API starting from proven math using a formal notation and prove that your generated implementation is correct if the CPU is behaving according to it's specifications.

Re:Does anyone

[PCM2]

If there is code verification for it to succeed, you must only allows a subset of X86 to be run else you run into the halting problem.

I don't think you understand the meaning of the term "code verification" in this context, or for that matter the term "halting problem."

not native speed as to sandbox you must create a vm like system.

Go read up on how Native Client actually works. It's not like it's a secret.

Re:Does anyone

[fidget42]

Yes. But, if they go for the locked ecosystem that seem to become so popular these days, they can try and solve the problem at the source.

But Google is open. Why would they go from an open playing field to a locked down, curated, one?

Re:Does anyone

[JonySuede]

The article you pointed nacl_paper.pdf, proved my point, they limit the instruction to a subset of the full X86 capabilities...
from p3 :

reviously, such analysis
has been challenging for arbitrary x86 code due to such
practices as self-modifying code and overlapping instruc-tions. In Native Client we disallow such practices through a
set of alignment and structural rules that, when observed,
insure that the native code module can be disassembled
reliably, such that all reachable instructions are identied
during disassembly.

And the halting problems is the impossibility of deciding if a given program will halt on execution or not. It is proven that for a Turing complete language (full X86 is) it can't be shown if an arbitrary program will halt or not. There is also another proof that enables you to reduce the analysis of any given property of a programs that must be preserved during is liveness to the halting problem. Sure, a class of program where it can be shown that it will halt exist but this is only a subset of all the possible programs.

Re:Does anyone

...and yet the only reason why 99% of the people on this planet still have ActiveX on their boxes is exactly due to this "anything goes" security policy.

Re:Does anyone

[JonySuede]

and in nacljit, where they talk about platform independent SFI of self modifying code they admit :

We found that the Mono and V8 platforms, and their x86-32 and x86-64 variants, spanned a wide range in terms of the porting
effort required and the sandboxing slowdown incurred. At one end, Mono-32, porting effort was low and the measured overhead is near
negligible. At the other extreme, V8-64, porting took a few weeks and sandboxing slowdown is between 51% and 60% on average,
but 196% in one benchmark (due to a porting shortcut, as explained

See, you do not get the full speed while sand-boxing non trivial program.

However, our language-independent sandboxing does not aim to
preserve high-level language semantics, and the implementation of
our mechanisms is unencumbered by those semantics.

This is kind of bad, but without any details on what was dropped we can't know if it really is.

It sufces to extend traditional SFI techniques with a few new features, including new safety constraints that apply inductively on the structure
of machine code, even across code modication.

Subset, just like I said....

Re:Does anyone

[blair1q]

Depends on what "sandbox" means to them.

If the API has no provision for generalized system calls or other i/o, and only allows i/o to its interface, then it should be no problem.

Or at least no more of a problem than the giant pile of un-verified code you're using to read this message and the vast number of invisible bytes it may or may not contain between its lines.

Re:Does anyone

[blair1q]

if the CPU is behaving according to it's specifications

Oops. I haven't seen one do that yet.

Re:Does anyone

[Late+Adopter]

If you only allow a subset you don't get native speed, you get the speed that your subset of instructions allows.

The inner sandbox uses static analysis to detect security defects in untrusted x86 code. Previously, such analysis has been challenging for arbitrary x86 code due to such practices as self-modifying code and overlapping instruc- tions. In Native Client we disallow such practices through a set of alignment and structural rules that, when observed, insure that the native code module can be disassembled reliably, such that all reachable instructions are identified during disassembly. With reliable disassembly as a tool, our validator can then insure that the executable includes only the subset of legal instructions, disallowing unsafe machine instructions. The inner sandbox further uses x86 segmented memory to constrain both data and instruction memory references. Leveraging existing hardware to implement these range checks greatly simplifies the runtime checks required to con- strain memory references, in turn reducing the performance impact of safety mechanisms.

As long as you weren't trying to write self-modifying code (and note most compilers won't do this), your performance impacts are basically restricted to checking non-local jumps. Not strictly native, but close enough.

not native speed as to sandbox you must create a vm like system.

That's provably untrue. See AppArmor and SE-Linux, both of which operate without creating a virtual machine (only implementing replacement system calls).

Re:Does anyone

I do not see the relevance of the halting problem in this discussion, it is just theory. When the end user presses Ctrl-C, the power cable is disconnected or the big crunch happens every process will halt.

  I do not know anything about NaC - but is the issue of the code verification not the interfaces rather than if the process will encounter the END command in finite time?

Re:Does anyone

Every time NaCl comes up someone says "But... but... ActiveX!!!". Perhaps next time you could preface your comment with "I no nothing about the subject matter, but...."

Re:Does anyone

And the halting problems is the impossibility of deciding if a given program will halt on execution or not. It is proven that for a Turing complete language (full X86 is) it can't be shown if an arbitrary program will halt or not.

Without infinite memory, no real computer is Turing complete. It therefore can't run a Turing-complete language fully. And whereas an arbitrary problem has the halting problem. One running under another system can be halted externally. Even the operating system can be halted. All computers have an Off button (of some description).

Re:Does anyone

[JonySuede]

and note most compilers won't do this

most games scripting engines will

Re:Does anyone

[RobbieThe1st]

Well, last I checked, a full VM wasn't *that* much slower than "native", at least in part due to most modern CPUs having a virtualization extension. So if it's too slow, we just get some enterprising developer to take the source code, have it use a nice hardware-enforced solution, and get *plenty* of speed.

Re:Does anyone

[icebraining]

Use Javascript. You already have one of the fastest script JIT compilers right there in the browser, no need to include one with your game.

Re:Does anyone

[ninetyninebottles]

That's damn wrong. ActiveX's widespread usage is NOT the only reason. The most significant reason is that ActiveX had basically NO security - one wrong decision by the user and their whole system is compromised. There is no "sandbox filesystem actions" like in Java model for instance. The second glaring issue is that the user does not always gets to decide - lots of objects were marked "safe for scripting" - that is for use from JavaScript, when in fact their interfaces never meant to be secure.

I would add that being a closed source, single vendor project, there was no competition. If MS's implementation was insecure, well you're SOL. With an open standard implementation of NaCl with an open source reference implementation you have a different beast. If Google doesn't fix a problematic hole MS or Apple or Nokia or Canonical or Adobe can and will. Competition drives improvement, including security improvements.

Re:Does anyone

[JonySuede]

I was not arguing against that. I don't hate vm, in fact I like them but to claim that they don't have a cost is bullshit as is the native speed claim. You could, at best, call it: close to native speed in some applications, that goes for NaCL to.

Re:Does anyone

[juancn]

ActiveX is fundamentally different than NaCl. ActiveX security was based on the component being signed and that's about it. NaCl uses a very strict code verification (similar to what the JVM does, but with a subset of x86), runs in a process that has no permissions to do anyhting, and can only use a few APIs. It's not worse than Javascript.

Re:Does anyone

Overlapping instructions are not used by modern compilers. Self-modifying code isn't done either except by the PE loader. Hits to NaCl performance will come from other differences, not in the two areas you cited.

Re:Does anyone

Everything should _be_ in JavaScript. NaCl is for JS code which is unacceptably slow. Most modern development is already done this way today in conjunction with C/C++ interop.

Re:Does anyone

[foniksonik]

How is Google open? They are very public about things, beta this alpha that but much of Googles software is closed.

Re:Does anyone

[fidget42]

How is Google open? They are very public about things, beta this alpha that but much of Googles software is closed.

You must not read any of their comments about Android.

Re:Does anyone

[CTachyon]

Does anyone else see this as a giant security hole? As in, various schemes like this have been tried since the days of ActiveX, and the only reason ActiveX has the worst reputation is because it's the only one that gained widespread use?

The point of NaCl is that it's a virtual machine bytecode language, and you can statically verify (without running the code) that the bytecode conforms to the spec. However, for performance reasons, the bytecode language and the virtual machine architecture just happen to line up with the native machine code and native architecture. NaCl provides only a subset of the full instruction set, though, and this prevents arbitrary pointer arithmetic or self-modifying code that could break outside the sandbox. NaCl authors actually need to recompile their code to x86 NaCl or ARM NaCl as a distinct GCC compiler target, instead of plain old x86 or ARM, because the NaCl targets are easily distinguishable from the native ones when you examine the machine code bytes. (The most important feature: all jumps are aligned and no ops cross an alignment boundary, so there's only one possible machine code interpretation for each byte of NaCl code.)

Needless to say, this is a vastly different model compared to ActiveX, which was "we'll trust any old native code to make arbitrary system calls, just so long as there's an RSA signature attached". NaCl ditches the central trusted authority model that Microsoft preferred, and instead goes with the Java/JavaScript/Lua/LISP model of "you can only perform side effects that the interpreter chooses to expose to your code". As with the interpreted languages your NaCl code is Turing-complete, so you can waste CPU and RAM until the cows come home, but you can't actually touch the filesystem, create GUI elements, or modify the address space of other processes unless Chrome decides to permit it. The only difference is that you don't run at some fraction of native code speed, but exactly at native code speed, and you can statically optimize as much or as little as you like, or write in any language you want (so long as someone's written a NaCl target for your language's compiler).

There will probably be a few bugs in the static verification logic that allow not-quite-NaCl code to slip through, but this is no worse than the sandboxing problems we already face from Javascript in the browser. With JavaScript, this has even included double free bugs that allowed overwriting arbitrary memory with native code and executing it. The risks with NaCl are no different.

Re:Does anyone

[hairyfeet]

What is sad to me is here we see a clear admission that Mono is easier to port, has less overhead, but because of religious zealotry it will NEVER be accepted because those that treat OSes like religions will go "ZOMG! It is by teh M$ it is teh evil! Burn teh witch ZOMG!" and thus it doesn't have a prayer. Meanwhile those of us on Windows will just use .NET and think their religion like the other kooky beliefs is just freaky.

As for TFA? I don't think it will work worth a shit for anything more complex than farmville, and here is why: There are only two ways to go really when it comes to security of third party code being run from the big bad web. One there is the Apple "Wall the living fuck out of it!" model, where you either give one company COMPLETE control to lock it down tighter than a nun's thighs or you're fucked, and the MSFT "Meh, we'll take care of it with a GPO" model, where you basically leave it open and let the users and the corps lock it down themselves. See ActiveX as to why that isn't the smartest of ideas.

The simple fact is gaming is the ONLY real popular thing that tries to get as close to bare metal as it can anymore and that is because of the big performance gains. If all you are doing is rendering a 2D farmville style game nobody gives a shit if you wrap it in a dozen VMs, as the machine will have more than enough juice to waste the extra overhead. But drawing even a game from 2k4 like Far Cry requires a hell of a lot of polygons AND physics AND AI AND 5.1 surround sound...you get the picture. A bunch of security crap placed to keep some .ru website from Goatse'ing your PC with the "free cool game yo!" means it will royally suck ass.

Part of the appeal of this wild and wooly web of ours is how free it is, how ANYBODY can set up a site and offer their games, like those indie packs. But if you have the games running inside the browser, away from the AV and OS security permissions? You either choose the Apple or the MSFT model, and both have serious issues. Personally I'd rather just download my games, scan them, and then choose whether i want it to run or not than give Google total control or have another ActiveX, thanks anyway Google.

BTW if anybody thinks Google isn't trying to become the MSFT of the mobile world? I have some nice swampland in AR you might be interested in. They WILL end up just as locked down as Apple (notice how they don't allow GPL V3?) and just as big an asshole as the Gates era MSFT, they will just have a catchy slogan, like "Think Different" or "Windows 7 was my idea!". Frankly I hope the guy that wrote the "Do no evil" marketing bullshit got a hell of a bonus, because it is fricking brilliant. I bet Jobs wishes he'd have known something so simple could work so powerfully. Made his RDF look like a bad joke really.

Re:Does anyone

[cgenman]

ActiveX has the worst reputation because it was a fundamentally insecure architecture that also happened to be poorly written. And despite being a default installation on a default browser of the default operating system for over a decade now, the only place I can think where it is actively in use is Microsoft's own websites.

Remember, ActiveX was attempting to compete with Flash and Java. At that it failed miserably.

Re:Does anyone

[phantomfive]

Rumor is that ActiveX caught on in Korea on very many websites. Not speaking Korean, I cannot personally verify this.

Re:Does anyone

I see the game developers going "OH FUCK NOT MORE API SHIT TO GO THROUGH!"

Seriously:
CPU->Machine Language ->CRT C++-->Windows/Mac/Linux API clusterfuck-->DirectX/OpenGL clusterfuck->Chrome->CRT C++

Can we puhleez stop putting on so many layers of shit. It's no wonder a 2011 system still feels like a 1995 system. It seems nobody learns the lesson from the previous API sandwich and instead wants to do it their way and add another layer on top.

Why don't we start over and go in the other direction, let's design a system to be purely for games and speed and then tack on the app infrastructure after-the-fact. Windows didn't learn from this till the Xbox360, None of the pre-smartphones learned from this Google is only now learning this on Android, Apple learned this back in System 6/7/8 when game developers all but entirely snubbed the platform, but still has only caught on to the "no api sandwich" with iOS.

Re:Does anyone

Yes, because: the (South) Korean government mandated encryption at a point in time where no browser actually supported the grade that they required. So, ActiveX plugins were devised to add this functionality (differently to what would eventually be standardized).

However, once every webmaster standardized on ActiveX, there was no migration path to the standardized encryption that was by this time added to every browser. It was impossible to simultaneously run the server to support both the plugin and the standard at once with the same configuration. So migration was immensely painful and took pretty much a decade.

And since you *knew* as a webmaster that every serious browser supported ActiveX (since they were unusable for any kind of government or ecommerce application otherwise), it was a much more well-established technology (no more secure though). Think of ActiveX with the penetration level of Flash, and you get the idea.

Re:Does anyone

[nikanth]

IIUC ActiveX required permissions and got access to everything. But NaCl is more like JVM, but runs directly in hardware.

Re:Does anyone

[Billly+Gates]

"Does anyone else see this as a giant security hole? As in, various schemes like this have been tried since the days of ActiveX, and the only reason ActiveX has the worst reputation is because it's the only one that gained widespread use?
"

I couldn't agree with you more. IE 5 and IE 6 are the staple of proper security and good coding practices. Nevermind it let any ActiveX applet run automatically with full administrator access by simply browsing a page. I am sure its those evil hackers just targeting what everyone uses. Just like now with correct settings that hackers magically access IE 8 or IE 9 activeX controls by magic simply because more people run IE than any other browser.

Re:Does anyone

[gl4ss]

what fun are apps that can't talk to each other?

but with chrome os, you wouldn't need this, all the potential security stuff is right in the javascript apis, just get the user to agree for you to read his mail box and you'll know exactly how to do it and how to tell his phone to call to your pay-line - with easy api's.

but this NaCl will be used for two things, to gain execution speed and to make things harder to reverse engineer. oh and third, to port stuff, chrome os needs nes emulators too.

Re:Does anyone

Before HTTPS, activex was the solution they codified for secure banking.
IIRC

Proprietary

[Billly+Gates]

How is using Pepper different than ActiveX with Internet Explorer?

If you use pure html 5 with WebGL or Canvas 3D (for IE 9 or IE 10) you can create 3D games using the hosts GPU. Chrome's 3D and hardware acceleration for html 5 does lag considerable behind Firefox and IE 9/10. I wonder if it is because they want you to use Pepper instead?

Either way their actions go agaisn't the spirit of HTML 5. You can do all of that properly in the latest versions of the browsers that is cross platform.

Re:Proprietary

[Seferino]

How is using Pepper different than ActiveX with Internet Explorer?

One word: sandbox.

Re:Proprietary

[PCM2]

How is using Pepper different than ActiveX with Internet Explorer?

In at least one significant way: The Native Client code is all open source, like Chromium itself.

Re:Proprietary

[Billly+Gates]

Com/DCOM in activex are highly documented with source code available over MSDN. Sure it is not GNU, but it is still proprietary when other open standards exist like HTML 5

Re:Proprietary

That addresses the Scott Cook complaint against Active X (security) but not the Marc Andreesen one (vendor lock-in).

The "browser" is becoming the new thin client

[countertrolling]

.. all connected to the Great and Wonderful Google... pay no attention to the man behind the curtain

Re:The "browser" is becoming the new thin client

[papasui]

This is actually the way its been in Corporate IT for quite a while. It's much easier to make a web app that gets update once on the server than to manage thousands of client updates, worry about security issues, etc. The current place I work about 80% of the applications are web apps with a few ones yet to make the move (MS Office being the primary one, but even that might be changing with Microsoft's cloud pushes).

Re:The "browser" is becoming the new thin client

[hedwards]

I've had to use them at work and it doesn't work anywhere near as well as folks think. Granted it probably does work if you've got the server onsite, but really, you shouldn't have a server onsite without a backup. The problems we had were that the server was being run offsite, and consequently whenever the gateway would be down we wouldn't be able to do portions of our job. And even when it wasn't completely down it might be as slow as molasses, which again would hurt productivity.

Sure it's convenient and all, but we're hardly at the point where having a web server handling this sort of thing is wise.

Re:The "browser" is becoming the new thin client

[Locutus]

hiring better network personnel might be a concept to consider. Or even a one-time consultant after getting bids and proposals from a few.

or find out who's downloading all the porn.

LoB

Re:The "browser" is becoming the new thin client

How do you keep the thin clients updated then?

Will there be "thousands of client updates, worry about security issues, etc."? If not, how is it different?

How is keeping the thin client updated any different from keeping any standard set of programs updated on the computer?

The browser as a platform to do everything is a dumb idea. Sure, if you want the Internet to be a big television, go for it.

Re:The "browser" is becoming the new thin client

[PCM2]

This is actually the way its been in Corporate IT for quite a while. It's much easier to make a web app that gets update once on the server than to manage thousands of client updates, worry about security issues, etc.

And before that it was Lotus Notes, and before that it was mainframes and AS/400s, etc. It has always been easier (and arguably better) to run certain types of applications on servers, particularly when the application's purpose is to give an arbitrary number of employees access to the same information store. Where the model has yet to be proven, IMHO, is when the purpose of the application is to enable an individual to perform an individual task (e.g. a word processor or a graphics program).

Re:The "browser" is becoming the new thin client

"Sure it's convenient and all, but we're hardly at the point where having a web server handling this sort of thing is wise."

But... but.. but it's on the web! The WEB! With HTML *5* and and canvas! And XML! And using databases! And TMZ and GCI... or whatever those other buzzwords in my management manual were. So it MUST be the right way!

Re:The "browser" is becoming the new thin client

[rtb61]

How about thinking of it more in terms of marketing, developer and consumer acceptance. In creating games to suit a platform, a market ecosystem must be built up of developers and consumers. This can be more readily created with relatively simple games in a web environment using the Google's cloud and aligned ISP's to provide the processing power for consumer to access and play games on relatively low cost devices.

From that basis the gaming environment game of course expand, no different to the expansion of the PC gaming environment over the years of development, into more complex and demanding games and obviously more powerful gaming platforms.

Basically from the phone, to the tablet, to the smartbook and tad dah, the desktop (the desktop either being a more powerful notebook or an actual desktop, perhaps even an open console or more likely a big screen built in optional accessory). Google thrives in an open market and the more areas of the computer ecosystem that are open and available to it the more opportunities it currently has.

Re:The "browser" is becoming the new thin client

[hedwards]

You're correct. In this case it was the fact that the person managing that infrastructure wasn't qualified and the gateway was kept in a room without adequate cooling.

That being said, there's other reasons why this isn't a wise idea, some of which are related to what happens when infrastructure 3 states away is having issues. I remember times when that would cause slow downs and problems. Granted that shouldn't be an issue these days, but then again companies should pay to have these things done correctly.

And ultimately, mission critical infrastructure should only be off site as a backup or in cases where the users aren't all in one place. If you've got most of your employees in one or two buildings, then its' really not a great idea to have the infrastructure somewhere else completely without some means of caching or otherwise working when the machines are down.

Re:The "browser" is becoming the new thin client

[countertrolling]

Even the browser (another name for 'program suite') runs on the server.. A real thin client is just a keyboard and a monitor

Re:The "browser" is becoming the new thin client

[kiddygrinder]

How is keeping the thin client updated any different from keeping any standard set of programs updated on the computer?

we do weekly updates to our web apps, i shudder to think how you'd roll that out to hundreds of computers, laptops and mobile devices when it takes us something like 10 minutes per application to push them to the production server.

Re:The "browser" is becoming the new thin client

I meant, how do you make sure the machine running the client-side web app is up-to-date? How is it different then?

MS

[mingot]

I would love to hear the howling if it was microsoft introducing this sandboxed native client.

Re:MS

[leoplan2]

It wouldn't be open source, it would be Windows-only...

Re:MS

[danish94]

It would be IE only.

Salty Sand

[FrankDrebin]

sandboxed native client (NaCl)

In other words, a saltbox.

Re:Salty Sand

ya so it kills all the snails

Re:Salty Sand

[blair1q]

NaCl...Pepper...get it?

They should've called the API "Lime," but maybe that's just me (and about 10,000 hot chicks in bikinis at spring break...)

Re:Salty Sand

NaCL is salt you doofus. Sodium chloride. Pepper on the other hand is made out of brimstone and sins.

Re:Salty Sand

CH3COOH, a fork gone sour...

Re:Salty Sand

I believe blair1q WAS referring that the "Pepper API" be renamed to "Lime". Woosh

Re:Salty Sand

[lanthar]

Should have gone with SiO2

A new generation making the same mistakes.

Each generation of programmers lasts about 10 years. During these 10 years, which are delimited by the periodic boom-and-bust cycle of the economy, the first 6 years will be spent making horrible mistakes. The next 2 years will be discovering (as we'll see, often actually rediscovering) the proper way, and the last 2 years will be trying frantically to implement the proper approaches and techniques. But after 10 years, the developers who have learned the correct way to do things will have retired, switched to a completely different industry, or moved high up enough in the management chain to a position where they have no direct influence over the technology development.

JavaScript and ActiveX were among the crowning mistakes of the last generation of developers (the "Web 1.0 generation").

Of the so-called "Web 2.0 generation", we're currently at the late stages of the initial 6-year phase. The worst mistakes are being made at this point, and their severity will soon be felt. The lessons will probably be relearned by 2014, and undoing this technology will probably be in effect by 2016. That'll be just in time for another batch of young developers to start the process all over again, recreating these very same problems.

Re:A new generation making the same mistakes.

[The+Dawn+Of+Time]

You could have saved all the trouble of typing out the poorly reasoned tripe and just said "get off my lawn."

Re:A new generation making the same mistakes.

I don't think he's telling you to "get off his lawn". Maybe he just doesn't want you webniks to be making the same mistakes that previous generations have made?

Re:A new generation making the same mistakes.

Actually that post matches my experience quite well. I was a programmer for about ten years. The first six spent making horrible mistakes, the next two learning how to do things right, the last two trying to do things right. After that I couldn't do it anymore and left for greener pastures.

Shockwave

reminds me of Shockwave, but with sandboxing?

Re:Shockwave

[blair1q]

Except it uses HTML5 instead of running through another box full of rendering.

Could be much more interesting from an interactivity standpoint.

Yer Mom is a game client.

[lexsird]

Actually this is kind of exciting for if it seriously takes off, that means one can do some gaming in a linux platform. Especially if it's a pay to play thingy which I would imagine that is where they are going with a browser based game. Or free to play but be plagued with ads, or its a pay to win situation. That means the whiny Mac people could play as well. Face it, games is what is keeping Windows around. At least in my opinion.

Re:Yer Mom is a game client.

[Tuuresairon]

Actually this is kind of exciting for if it seriously takes off, that means one can do some gaming in a linux platform.

I've been playing games using only GNU/Linux for many years and the main problem was lack of time to try them all, especially since the Humble Indie Bundle. Let alone all those games for Android. I highly doubt that I somehow travelled in time and started using NaCl even before Chromium was released.

I agree it can result in more cross-platform games, though.

games is what is keeping Windows around

[sourcerror]

And legacy applications, and Excel macros.

It's a sign you're on the right path

[The+Dawn+Of+Time]

It must be the right way, because all the old programmers who don't want to learn anything new hate it.

Re:It's a sign you're on the right path

Old programmers have seen this shit before.

"Web apps" are a sad excuse for being incompetent in writing a real application. Even the name is shorter. Relying on javascript to do the work for you is a sign of incompetence, as is the constant magnatudes of security flaws that pop up in js engines / software. PHP is another sign of weakness.

People who program "web apps" are wasting millions of potentially useful man-hours. NaCl is a sorry joke, there's no way any seasoned programmer would take it seriously for more than a toy.

You can hedge your bets, but in the end - "web apps" are just another bubble that will pop.

Security hole

system("format c");
That was all.

Re:Security hole

1. 1) format.exe: Invalid drive specification.
2. 2) format.exe: Access Denied as you do not have sufficient privileges. (Limited user access.)
3. 3) system: The current directory is invalid. (Low integrity mode.)
4. 4) nacl-gcc: 'system' was not declared in this scope (Not implemented by libc/msvcrt.)

Re:Security hole

system("format c");

$ format c
bash: format: command not found

Re:Security hole

system("format c");

$ format c

bash: format: command not found

Yes, it is working correctly. If there is a security hole, you can hear it being fixed (or if you have bad ears, just watch the HD LED). If there was no security hole found, you get the message from the quote.

Kind of obvious.

[drolli]

For what else would you like a native client in a consumer product.

Sandboxed salt...

[tenco]

... with integrated pepper?

Some Googlers seem to appreciate wordplay :)

Re:Cats shit in sandboxes all the time.

[ninetyninebottles]

They're [sandboxes] a theoretical concept that have never worked well in the real world. They've been tried time and time and time and time again. They aren't a new concept, but nobody ever seems able to implement them properly, even when some of the biggest names in the field are involved, and even when they have nearly unlimited resources and people to throw at the problem.

Well, except Apple with iOS, Google with Android, the NSA with their SELinux improvements, a crap-ton of people who worked on and use TrustedBSD, Bitfrost in the OLPC, and every security researcher for the last 20 years who has relied heavily on VMs. But yeah aside from those and probably a bunch more I don't know about, no one has successfully implemented sandboxes.

Maybe what you meant to say was that Microsoft hasn't been able to implement them properly.

It's not about security, its about market share

[kangsterizer]

Once Google gets this out - knowing competitors will not pick it up - and leverage it's massive weight by paying devs and advertising everywhere - we may actually get some decent games done for it.
But only Chrome will play them, the open standard is just a trick there, as, once again, no one else will implement it for a long while.

Once Chrome has captured market, Google has end-to-end web control, and that is a little bit scary.

I'm confused here

[ILongForDarkness]

What is the benefit other than porting native apps to run in a browser? The article linked to says that the Pepper interface is a binding layer that converts the native calls into stuff that can be done in HTML5. That's great but ... native apps will now be limited to the performance of the HTML5 engine unless I'm missing something. So yeah you can get platform independence as long as you are willing to have an interpreted layer between your code and the OS. Isn't that the same thing Java gives you? How about Windows game developers Direct X support etc? Are developers really going to just throw that away and redesign things to perform well on an interpreted HTML5 interface rather than port the program over to a web language entirely?

Re:I'm confused here

The benefit is that Google will further their desktop penetration. The less reasons you have to run anything outside of Chrome, the better for them. By running things in Chrome Google can better track behaviors, which is why Google exists: ad revenue (or big-government-watching-you for you conspiracy theorists.)

Surf the web? Just use Google's browser.

Mail? Just use Google Mail.

Office apps? Just use Google Apps.

Games? (Eventually) Just use Google's browser.

Once Eclipse runs in a browser (which is happening) and Photoshop then you won't need anything other than some lightweight Linux-based OS. They'll rule the world.

Re:I'm confused here

[ILongForDarkness]

You might be right. To me though gamers always want something more powerful, emulation/browser based isn't going to be it. For moderately good graphics there is already a huge number of things, silverlight, java, flash, etc. They really shouldn't be able to call it a native interface, yeah it is an interface from native but that is like saying "we can take your really optimized program and running in a crappy emulation layer, woo hoo.

Re:I'm confused here

[darinf]

It is not that Pepper is limited to the performance of HTML5. Rather, Pepper is limited to the same security restrictions as HTML5. There is a compatible security model for NaCl and JS. That's what is different and unique about this plugin model (NaCl+Pepper), as compared to NPAPI or ActiveX.

Re:I'm confused here

There is no benefit... unless you want to play games on the mostly useless Google Chrome notebooks.

Re:I'm confused here

[gl4ss]

well, they can run for example run an emulator core in the c++ side, so you could get "in browser" psx emulators and stuff like that, or the ai core.

more likely, they'll implement opengl inside from that c++ and some sound apis too, like in android.

Re:I'm confused here

[randomErr]

You're sorta right. This is a hybrid approach of Java and ActiveX/COM. Its like Java it that it runs in its own virtual machine. The big different is that Java is a generic VM that is meant to run on any system. This is targeting a specfic processor with a specfic API on newer technology kinda like ActiveX. Unlike ActiveX/COM and like Java its not 'suppose' to give you full OS level API. Overall this will be optimized to the hilt with a very specfic (read narrow focus) VM enviorment.

And the rest of MS Office

[brokeninside]

And SQL Server, and Visual Studio, and a bzillion different vertical apps put out by ISVs.

You hinted at that with "legacy applications" but the fact is that very little of the installed base of Windows applications counts as "legacy." Most are being actively developed.

Bocoup on HTML 5 game development

Bocoup has a good blog on HTML 5 game development for chrome, by the way.

Re:Bocoup on HTML 5 game development

"Oh no! We are sorry, but your browser does not seem to support WebGL"

this is one of the reasons why, apart from a small number of idiots with iphones and ipads who can't get flash running, people are just not interested in this crap.

sorry, but even when it does work it looks rubbish. essentially, html5 is a non-solution to a non-problem.

So what?

[phizi0n]

Who cares if they're making HTML 5 games when they're doing browser detection that blocks other HTML5 capable browsers instead of doing feature detection to tell if the browser supports all the features needed to run?

Finally we will get rid of Java.

1) Oracle and Google's Native Client technology are stronger than Minecraft and will kill Java easily.

2) Fewer Software Developers will beat up their children when they come home from work.

3) Value of being alive will be improved.

Gaming in linux

This could be very good for gaming in linux if it develops well and starts to get better and better 3d capabilities, of course there might be a security issue.

HW acceleration with GPU...

[Frederic54]

They should start to re-enable it. I use XP on a netbook which has a ION, it's a very powerful GPU for a netbook, I can play movie on 1080p because it uses the GPU to render it. Flash video *were* also accelerated, but not now. Google decided that on XP, they disable all GPU acceleration. So now all the video (like youtube), all flash games, etc, are driven by the poor Atom...

Why they forced a disable is beyond me, there is no way to re-enable it except by going back to Chrome 7 or something like that.

Re:HW acceleration with GPU...

[AmberBlackCat]

Maybe there is a way you can set your web browser's mpeg4 plugin to use GPU acceleration.

Re:HW acceleration with GPU...

[Frederic54]

It seems it's because they disabled h.264 codecs :-/