MeshOS

Paper: Protection and Communication abstractions for web browsers in MashupOS

Summary:
This paper addresses the protection and communication deficiency of multi-principle browser. It identifies and design the missing abstraction in a backward compatible and adoptable manner needed for such platforms. Author identifies that present trust model does not allow any cross-domain interactions which cause a trade-off between security and functionality. This paper presents design of a multi-domain browser based operating system where domain can interact in a secure and controlled manner.

Liked:
• Sandboxing mechanism restricts access to only pages/ objects which are referenced inside the sandbox. It also allows hosting of untrusted third-party content as unauthorized.
• Idea of keeping the interfaces stable and providing backward compatibility while building “MashupOS”, fall in synchronization with Lampson’s hint of keeping interfaces stable.
• Extension of VOP to enable cross-domain browser-to-server communication and cross-domain browse-side communication.
• Concept of Friv which provide abstraction for flexible cross-domain display.
•
Disliked:
• Possibility of information leak in use of Friv where malicious user can learn information about child document.


details will be provided later.. right now i dont have time