I see lots of concern about what Meltdown and Spectre mean for the web, containers, and VMs, but not much about what it means for hosted ecosystems like Android and iOS. Are people so confident they can trust the App Store, or am I not seeing it b/c of bias in my twitter feed?
-
-
Replying to @littlecalculist
It certainly looks like the Spectre section 5 attack would work across applications on Android/iOS. Maybe people trust App Stores, even though they're far from foolproof. https://www.wired.com/story/google-play-store-malware/ …
2 replies 0 retweets 8 likes -
Replying to @rocallahan @littlecalculist
I do think that JS (sans strict process-per-site) and other in-process isolation features have a problem here, which is that hardware isn't aware of the isolation boundaries so it's harder to take advantage of hardware features to mitigate.
1 reply 0 retweets 2 likes -
Replying to @rocallahan @littlecalculist
Is Firefox considering process-per-site in light of this?
3 replies 0 retweets 0 likes -
Replying to @jaffathecake @littlecalculist
Dunno. For what it's worth I think taking a position "you can no longer isolate any kind of executable code except using process boundaries" would be extremely bad, even if browsers can engineer their way through it (at large performance cost).
1 reply 0 retweets 2 likes -
Replying to @rocallahan @jaffathecake
Wholeheartedly agree. I'm also concerned about the push for site isolation, and heartened that
@luke_wagner's post suggests Mozilla is looking at more targeted fixes. But I'm aware I'm not an expert here.1 reply 0 retweets 0 likes -
What's the concern? Memory usage?
1 reply 0 retweets 0 likes -
Replying to @jaffathecake @littlecalculist and
That + general process overhead. Also I have a concern that Site Isolation’s benefits are oversold…e.g. I’m not sure it even fixes Spectre.
1 reply 0 retweets 2 likes -
Replying to @pcwalton @jaffathecake and
Different processes can share a CPU cache, after all. See “same CPU cross-process” here https://github.com/marcan/speculation-bugs/blob/master/README.md …
4 replies 0 retweets 1 like
That said, I’d say on balance we should do something like process-per-some-subset-of-trusted-origins like Chrome is doing regardless…
-
-
Replying to @pcwalton @jaffathecake and
It’s better than *not* doing it. I’m just not as excited about Site Isolation’s benefits as many others are. :)
1 reply 0 retweets 0 likes -
Replying to @pcwalton @littlecalculist and
Fair enough. Fwiw it isn't all that Chrome's doing. We're also making changes to the JS engine, similar to Firefox.
1 reply 0 retweets 0 likes - 1 more reply
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.