[cap-talk] Google Chrome - web browser with sandboxed rendering
Karp, Alan H
alan.karp at hp.com
Mon Sep 8 23:18:43 CDT 2008
Raoul Duke wrote:
>
> your point about "getting it wrong" is a great one to make; i would
> assume there is no way any system will get "it" right all the time, so
> if one is going to properly do one's job the question of: uhm, gosh,
> what do we do when things fail or the wrong choice is made? is very
> important.
>
I think a better approach is to limit the damage that gets done, which is what Polaris and Plash do. With Polaris, most of the time users only know that they made a bad choice and malware ran if the virus scan detects some remnant. In the most extreme case, one user (MarkM) had to re-Polarize his browser, but even that is only a minor inconvenience compared to the alternative.
________________________
Alan Karp
Principal Scientist
Virus Safe Computing Initiative
Hewlett-Packard Laboratories
1501 Page Mill Road
Palo Alto, CA 94304
(650) 857-3967, fax (650) 857-7029
http://www.hpl.hp.com/personal/Alan_Karp
More information about the cap-talk
mailing list