Architecture in Practice: Chrome Reid Holmes Chrome Online - - PowerPoint PPT Presentation

architecture in practice chrome
SMART_READER_LITE
LIVE PREVIEW

Architecture in Practice: Chrome Reid Holmes Chrome Online - - PowerPoint PPT Presentation

Oct 16, 2023 376 likes •418 views

Material and some slide content from: Taylor et. al. http://queue.acm.org/detail.cfm?id=1556050 http://seclab.stanford.edu/websec/chromium/chromium-security-architecture.pdf OS-Level Sandbox OS/Runtime OS/Runtime Exploit Barriers Exploit

slide-1
SLIDE 1

Material and some slide content from: Taylor et. al. http://queue.acm.org/detail.cfm?id=1556050 http://seclab.stanford.edu/websec/chromium/chromium-security-architecture.pdf

Architecture in Practice: Chrome

Reid Holmes

Browser Kernel (trusted) OS/Runtime Exploit Barriers JavaScript Sandbox Web Content (untrusted) OS/Runtime Exploit Barriers OS-Level Sandbox

IPC Channel

slide-2
SLIDE 2

REID HOLMES - SE2: SOFTWARE DESIGN & ARCHITECTURE

Chrome

  • Online content is insecure and can compromise:
  • Confidentiality: Leak user data
  • Integrity: Read/write arbitrary data on disk
  • Availability: Crash host application and/or OS

Chrome relies on least privilege, separation

  • f privilege, and defence in depth to securely

parse and render insecure content.

slide-3
SLIDE 3

REID HOLMES - SE2: SOFTWARE DESIGN & ARCHITECTURE

Chrome architecture

Browser Kernel (trusted) OS/Runtime Exploit Barriers JavaScript Sandbox Web Content (untrusted) OS/Runtime Exploit Barriers OS-Level Sandbox

IPC Channel