Presentation is loading. Please wait.

Presentation is loading. Please wait.

On the Design of a Web Browser: Lessons learned from Operating Systems Kapil Singh and Wenke Lee Georgia Institute of Technology Web 2.0 Security and Privacy.

Published byAlex Pugh Modified over 11 years ago

Similar presentations

Presentation on theme: "On the Design of a Web Browser: Lessons learned from Operating Systems Kapil Singh and Wenke Lee Georgia Institute of Technology Web 2.0 Security and Privacy."— Presentation transcript:

1 On the Design of a Web Browser: Lessons learned from Operating Systems Kapil Singh and Wenke Lee Georgia Institute of Technology Web 2.0 Security and Privacy – 2008

2 2 Motivation Browser has evolved from rendering static web pages to a host of variety of applications. Browser size has grown and is running much more application code. Effectively building up into a mini-OS. … so why not think of browser design based on known OS designs?

3 3 What we have today? All browser components run in one isolation boundary. Minimum or no isolation among components Problem of plug-ins increased code size Source of increasing browser vulnerabilities bad maintainability lack of flexibility Not much freedom to customize your browser

4 4 …Have we already seen these issues somewhere? Monolithic kernel design suffers from similar limitations! Can we do something better? Micro-kernel, Exokernel, SpinOS… Can the lessons from OS be applied to the browser design?

5 5 Design Principles Isolation between browser components Integrity of communication channels Separation between policy and mechanism Customization and Flexibility

6 6 Browser Design Goal: To leverage known OS designs to develop a secure and flexible web browser. Utilize the μ-kernel OS design [Leitdke95] Layered architecture with a kernel mode and a user mode. β-kernel provides complete mediation. All applications run on the layer on top of the β- kernel.

7 7 Browser from an OS view μ-kernel based OS β-kernel based browser

8 8 β-kernel: primitives Address space Communication between browser components Identity of browser components

9 9 β-kernel primitives: Address Space Enable isolation and customized access control. Memory management module owns complete address space at browser startup. Grant, Map and Flush operations. Applicable to browser cache and file system.

10 10 Example: Same Origin Policy X.com Memory Management Access Control grant Request Y.com Request Access X.com X map β-kernel Access Y.com X

11 11 Design Directions Single process browser better performance and memory management Intra-address space isolation [Ford08, Chiueh99] Vx32 provides lightweight sandbox for guest code in the host address space. Can control the systems calls from the guest code.

12 12 Single process: Performance (?)

13 13 Tackling browser extensions Browser design allows flexibility to develop your own memory management, access control, etc. on top of the kernel. Installation of new extensions mediated by the β-kernel. Communication interfaces verified according to the user policies. Execution verification and isolation Intra-process sandboxing

14 14 Conclusions Presented a new browser design based on the learnings from a μ-kernel design. Design shows potential, feasibility depends on performance and usability. Attempt to bridge the gap between OS designs and browser designs. Might be useful to utilize other experiences from the OS field.

15 15 Thank You. Questions? Kapil Singh ksingh@cc.gatech.edu

Download ppt "On the Design of a Web Browser: Lessons learned from Operating Systems Kapil Singh and Wenke Lee Georgia Institute of Technology Web 2.0 Security and Privacy."

Similar presentations

Towards Remote Policy Enforcement for Runtime Protection of Mobile Code Using Trusted Computing Xinwen Zhang Francesco Parisi-Presicce Ravi Sandhu www.list.gmu.edu.

Towards Remote Policy Enforcement for Runtime Protection of Mobile Code Using Trusted Computing Xinwen Zhang Francesco Parisi-Presicce Ravi Sandhu
1 Copyright © 2002 Pearson Education, Inc.. 2 Chapter 1 Introduction to Perl and CGI.

1 Copyright © 2002 Pearson Education, Inc.. 2 Chapter 1 Introduction to Perl and CGI.
1 Resonance: Dynamic Access Control in Enterprise Networks Ankur Nayak, Alex Reimers, Nick Feamster, Russ Clark School of Computer Science Georgia Institute.

1 Resonance: Dynamic Access Control in Enterprise Networks Ankur Nayak, Alex Reimers, Nick Feamster, Russ Clark School of Computer Science Georgia Institute.
MicroKernel Pattern Presented by Sahibzada Sami ud din Kashif Khurshid.

MicroKernel Pattern Presented by Sahibzada Sami ud din Kashif Khurshid.
1 Resonance: Dynamic Access Control in Enterprise Networks Ankur Nayak, Alex Reimers, Nick Feamster, Russ Clark School of Computer Science Georgia Institute.

1 Resonance: Dynamic Access Control in Enterprise Networks Ankur Nayak, Alex Reimers, Nick Feamster, Russ Clark School of Computer Science Georgia Institute.
17 Copyright © 2005, Oracle. All rights reserved. Deploying Applications by Using Java Web Start.

17 Copyright © 2005, Oracle. All rights reserved. Deploying Applications by Using Java Web Start.
Interactive lesson about operating system

Interactive lesson about operating system
1 VIRTUAL MACHINES By: Sai Siddharth Kumar Dantu.

1 VIRTUAL MACHINES By: Sai Siddharth Kumar Dantu.
INTRODUCTION TO SIMULATION WITH OMNET++ José Daniel García Sánchez ARCOS Group – University Carlos III of Madrid.

INTRODUCTION TO SIMULATION WITH OMNET++ José Daniel García Sánchez ARCOS Group – University Carlos III of Madrid.
Component-Based Software Engineering Main issues: assemble systems out of (reusable) components compatibility of components.

Component-Based Software Engineering Main issues: assemble systems out of (reusable) components compatibility of components.
COMP1214 Systems & Platforms: Operating Systems Concepts Dr. Yvonne Howard – Rikki Prince – 1.

COMP1214 Systems & Platforms: Operating Systems Concepts Dr. Yvonne Howard – Rikki Prince – 1.
CMPT 401 Summer 2007 Dr. Alexandra Fedorova Lecture III: OS Support.

CMPT 401 Summer 2007 Dr. Alexandra Fedorova Lecture III: OS Support.
CMPT 401 Dr. Alexandra Fedorova Lecture III: OS Support.

CMPT 401 Dr. Alexandra Fedorova Lecture III: OS Support.
Executional Architecture

Executional Architecture
Introduction to z/OS Security Lesson 4: There’s more to it than RACF

Introduction to z/OS Security Lesson 4: There’s more to it than RACF
Operating System Architecture and Distributed Systems

Operating System Architecture and Distributed Systems
CS533 Concepts of Operating Systems Class 14 Virtualization and Exokernels.

CS533 Concepts of Operating Systems Class 14 Virtualization and Exokernels.
Chapter 6 Security Kernels.

Chapter 6 Security Kernels.
Chorus Vs Unix Operating Systems Overview Introduction Design Principles Programmer Interface User Interface Process Management Memory Management File.

Chorus Vs Unix Operating Systems Overview Introduction Design Principles Programmer Interface User Interface Process Management Memory Management File.
Securing Interaction for Sites, Apps and Extensions in the Browser Brad Miller J. D. Tygar.

Securing Interaction for Sites, Apps and Extensions in the Browser Brad Miller J. D. Tygar.

Similar presentations

Ads by Google