[cobertos]

Won't it be the opposite, control will fall further from the end user? All code is served from some remote endpoint, which you're unable to load if your device doesn't attest (like Android safety net) or some other arbitrary reason. That plus browsers are already too complex to replicate.

Unless you mean that we'll have webassembly packaged in nice little .exes or .apks or some other app bundle so we can at least download them?

[skybrian]

I don't know what they meant, but in principle, I don't see why WebAssembly apps can't be downloaded, since browsers do it? (Ideally they should be signed, but using a more distributed scheme, like DNS.)

Due to phishing, it seems like most people do need security software, but not necessarily provided by the OS vendor. It could be from a plugin.

The biggest issues are lack of resources and lack of standardization. What organizations have the people to do all these things, besides the OS vendors?

[orange8]

This is a problem that has already been solved. Look into PWA