[wsxcde]

The author has rediscovered the need for software fault isolation (SFI). Bytecodes or IRs like WASM can also provide SFI but are overkill because they provide more than just SFI.

If I were him, I'd have used this as an excuse to play with NativeClient.

--

The original paper on SFI was by Robert Wahbe and colleagues: https://cs155.stanford.edu/papers/sfi.pdf.

Google's NativeClient is a modern take on SFI for x86: https://static.googleusercontent.com/media/research.google.c....

[jedisct1]

Unfortunately, NativeClient has been abandoned.

[afiori]

Does SFI also cover sandboxing?