Electronegativity - A Study of Electron Security

Explore Electron's security model and isolation mechanisms in this 47-minute Black Hat conference talk. Delve into the prevention of untrusted content from accessing Node.js primitives, and gain comprehensive insights into Electron's IPC messaging, preloading, and internal workings. Analyze security-relevant options for BrowserWindow and WebView, while examining design-level weaknesses and implementation bugs in Electron-based applications. Presented by Luca Carettoni, this session offers a deep dive into the security aspects of Electron framework development.