Melanie Naumann wrote: > The idea: Treating single script tags separately. My idea is to tag the > scripts (e.g. with additional html attributes) to enable a finer-grained > access control for accessing documents via DOM trees. > > The problem: Somehow I have to treat script code of different script > tags separateley. Probably I have to put them into differnt kind of > runtime contexts and have to control the access similar to the situation > where a script tries to access cross-frame to another document.
Finer-grained control raises all sorts of possibility for mischief if all the scripts have (partial?) access to the same DOM. See the paper "Beware of Finer-Grained Origins" (Jackson, Barth) at http://crypto.stanford.edu/websec/origins/fgo.pdf for some potential issues. One option available in Firefox 3 would be to open the various scripts in separate contexts (using <iframe>) and communicate with your master page using the new postMessage() feature. Whether that's a workable solution depends on what the various scripts are trying to do. _______________________________________________ dev-security mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security
