Explore the evolution and current state of web isolation techniques in this 30-minute conference talk by Jasvir Nagra and Pedro Fortuna. Delve into the importance of security isolation as a design principle for improving application resilience against attacks. Learn about sandboxing techniques, the Same Origin Policy (SOP), and iframe sandboxing as methods for providing isolation in web applications. Examine the challenges of implementing effective web isolation, particularly when dealing with third-party code and services. Discover a client-side sandboxing solution that can be embedded into web applications without browser modifications. Gain insights into the potential future of web isolation and discuss upcoming security challenges facing the community.
Temporal - Achieving the Web Isolation Nirvana - How Far Along Are We?
Overview
Syllabus
Intro
History of Web Isolation
Web Isolation Approaches
Principles of Web Isolation
Demos
CAHA
Sandbox
Taught by
OWASP Foundation
Related Courses
-
Achieving the Web Isolation Nirvana - How Far Along Are We?
-
The "Web/Local" Boundary Is Fuzzy - A Security Study of Chrome's Process-based Sandboxing
-
Escaping Modern Web-Based App Sandboxes - Site Isolation Vulnerabilities
-
Temporal - Code-Origin Policy - Towards a Formal User Privacy Protection for the Web
-
Caught My WebApp Cheating on Me
-
In a Container, Nobody Hears Your Screams - Next Generation Process Isolation
