Browser Sandbox Security by internal attack from Mountie Lee on 2013-01-11 (public-webappsec@w3.org from January 2013)

From: Mountie Lee <mountie.lee@mw2.or.kr>
Date: Fri, 11 Jan 2013 19:04:55 +0900
To: public-webappsec@w3.org
Message-ID: <CAE-+aYKfncjGRaBx4uZSb1AoTw=N_9cAd5DaH_KWwVU6uJF5Qg@mail.gmail.com>

Hi.

the current CSP's aim is protecting browser sandbox by external attack.

how strong the browser sandbox from internal attack (from OS)?

my question is based on that user environment can be easily compromised.

regards
mountie.
-- 
Mountie Lee

PayGate
CTO, CISSP
Tel : +82 2 2140 2700
E-Mail : mountie@paygate.net

=======================================
PayGate Inc.
THE STANDARD FOR ONLINE PAYMENT
for Korea, Japan, China, and the World

Received on Friday, 11 January 2013 10:05:41 UTC