|
|
|
|
|
|
by CodeIsTheEnd
1691 days ago
|
|
|
Wow, this is a really great article. Thank you for sharing! It discusses a fascinating point about browser UI: when the browser displays something inside its chrome, where a malicious page could render arbitrary pixels, it must establish a visual bridge back to the "trusted zone" (the chrome), providing proof that is in fact trusted content. (The author points out that new APIs allowing writing to the entire screen means it's hopeless and we're all doomed though.) |
|
|