[E2EEd]

Very exciting. As this works on Fuchsia, a capabilities-based OS with a security-first design goal, is there any writeup on the security architecture for this project?

Is it correct to say that a convergent desktop environment exposes a large surface area via monolithic access to the underlying OS? It seems that the desktop environment is one of the hardest things to build securely, if embarking on such a journey.

Also, somewhat related: In light of forthcoming capabilities-based hardware (see: ARM Morello), is it a bit hasty to embark on a security-first rewrite of the entrenched Von Neumann / Harvard basis for incumbent OS environments?