Secure Cooperative Sharing of JavaScript, Browser, and Physical Resources

Date Added: May 2010
Format: PDF

For better application-level controls on mashups, they advocate extending the Single Origin Policy and associated primitives to support a cooperative model that allows applications to express explicit sharing policies over browser, Javascript, and physical resources. First, the authors introduce an isolation model for content loading that is more complete than those of surveyed browser proposals. Second, they present new primitives to enable an application to secure its use of untrusted content by delegating browser, JavaScript, and physical resources in a fine-grained and reliable manner. Finally, essential to adoption, they propose an architecture based on designs for related abstractions with low performance and implementation costs.