The OS "verifies that untrusted code does not contain privileged instructions, so all processes can run at Ring 0" http://research.cs.wisc.edu/areas/os/Seminar/schedules/papers/Deconstructing_Process_Isolation_final.pdf …
@rsesek Similar to the initial 1-process Servo. But now Servo will be n-process sandboxed b/c it's hard to use safe lang 100% of the time.
-
-
@BRIAN_____ Interesting. The other issue they bring up in the paper is that you have to trust that your runtime, compiler, etc are all safe. -
@rsesek Yep. But, I think it is the future. Sandboxing does dynamically what is more efficiently done statically once we learn how to do it.
End of conversation
New conversation -
-
-
@BRIAN_____ And sandbox escape in ring 0 is an instant Danger Zone.Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@rsesek And also, even if you can force use of 100% safe lang, the implementation of the safe lang will have bugs (e.g. JVM, Flash).Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.