W3C home > Mailing lists > Public > public-webapps@w3.org > April to June 2009

Re: [widgets] Widgets URI scheme... it's baaaack!

From: Arve Bersvendsen <arveb@opera.com>
Date: Fri, 22 May 2009 21:26:33 +0200
To: "Larry Masinter" <masinter@adobe.com>, "marcosc@opera.com" <marcosc@opera.com>, public-pkg-uri-scheme <public-pkg-uri-scheme@w3.org>, public-webapps <public-webapps@w3.org>
Message-ID: <op.uuciyjotbyn2jm@galactica>
On Fri, 22 May 2009 19:13:35 +0200, Larry Masinter <masinter@adobe.com>  

> What makes a set of widgets "related"? Is there an attack where
> based on UUID knowledge where two unrelated widgets could somehow
> appear "related"?
> What "existing infrastructure for security" are you planning
> to reuse?

Not having to rewrite from the bottom up how XMLHttpRequest works, and is  
checked in most user agents, as an example (It goes for a lot of other  
code in DOM).

> Often, security loopholes are introduced when reusing
> security infrastructure designed for one context in
> a way that it wasn't designed for.
> "thismessage:/" basically didn't allow references outside
> the package at all. By adding a UUID and alluding to
> "related" packages as possibly being available, "widget"
> might become a vector.
> I'm not saying it is, I'm just saying that getting external
> review for security mechanisms and assumptions is critical.
> Larry
> --
> http://larry.masinter.net
> -----Original Message-----
> From: Arve Bersvendsen [mailto:arveb@opera.com]
> Sent: Friday, May 22, 2009 9:55 AM
> To: Larry Masinter; marcosc@opera.com; public-pkg-uri-scheme;  
> public-webapps
> Subject: Re: [widgets] Widgets URI scheme... it's baaaack!
> On Fri, 22 May 2009 17:29:57 +0200, Larry Masinter <masinter@adobe.com>
> wrote:
>> If the widget: scheme is intended for inter-package references
>> then there are security issues with that. If not, then why the UUID?
> At the time of writing, I do not see them being used for inter-package
> references (If my understanding equals yours here, as in "references
> between otherwise unrelated widgets".
> The UUID? Well, it actually eases implementations a bit, since an
> implementation can use the UUID as "domain" when requests are made, which
> actually allows vendors to reuse existing infrastructure for security
> checks and so on.

Arve Bersvendsen

Opera Software ASA, http://www.opera.com/
Received on Friday, 22 May 2009 19:27:22 UTC

This archive was generated by hypermail 2.3.1 : Friday, 27 October 2017 07:26:16 UTC