W3C home > Mailing lists > Public > public-web-security@w3.org > November 2011

Re: Understanding the security model for the sandbox directive

From: dveditz <dveditz@mozilla.com>
Date: Fri, 4 Nov 2011 08:26:26 -0700 (PDT)
Message-ID: <pg5o38t4g1gc6xou119g6kre.1320420360611@email.android.com>
To: w3c@adambarth.com, public-web-security@w3.org
Cc: jrossi@microsoft.com
What do you mean by "main frame"? The top document, or the document in a <frame> element in the top document?

A sandbox directive should apply to any document no matter where loaded, and should not pollute the container it is loaded in for future documents. If we start with those as consistency principles what works and what doesn't?

What model does IE 10 follow? What have they learned from their implementation?
Received on Friday, 4 November 2011 15:29:29 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Friday, 4 November 2011 15:29:30 GMT