W3C home > Mailing lists > Public > public-webappsec@w3.org > September 2016

Re: Isolate-Me explainer

From: Emily Stark (Dunn) <estark@google.com>
Date: Mon, 19 Sep 2016 14:46:52 -0700
Message-ID: <CAPP_2SbrkA+dthC3K9+Dxwtqoy9xVysTSF84GRd91C7HB0=O1g@mail.gmail.com>
To: Crispin Cowan <crispin@microsoft.com>
Cc: "public-webappsec@w3.org" <public-webappsec@w3.org>, Mike West <mkwst@google.com>, Joel Weinberger <jww@google.com>, Tanvi Vyas <tanvi@mozilla.com>, Nasko Oskov <nasko@chromium.org>, Charlie Reis <creis@chromium.org>
On Mon, Sep 19, 2016 at 1:25 PM, Crispin Cowan <crispin@microsoft.com>

> Neat! I’ve wanted something like this for at least six years, but it gets
> stuck on the issue that web devs need to do work to opt into it, and thus
> is likely to suffer low adoption for a long time to come. Worse, the sites
> that really benefit from it (banking) are old and stable, some of the least
> likely to update to whatever the new shiny is in web standards. Thus true
> site isolation (isolate all origins by default) seemed better than
> isolate-me, with the downside that true site isolation is very hard to
> achieve.
> Which leads to a question: does Google see isolate-me as a step towards
> site isolation? Or are you giving up on site isolation and proposing this
> instead?

(I'm adding Charlie and Nasko who are members of the site isolation team
and might have more to say about this.) Definitely we are not giving up on
site isolation by any means! In fact the site isolation team just shipped a
major milestone in M55: isolating extension frames by default (
chromium-dev/qlI54-dK4Ac). Yay!

As you suggested, turning on site isolation for every site by default is
definitely the dream, but at the moment it would be prohibitively
resource-intensive. So I see Isolate-Me as a step towards site isolation,
in that the browser can use it as a signal -- maybe one among several
possible signals -- that a site should be isolated in its own process if

> *From:* Emily Stark (Dunn) [mailto:estark@google.com]
> *Sent:* Friday, September 16, 2016 8:16 AM
> *To:* public-webappsec@w3.org
> *Cc:* Mike West <mkwst@google.com>; Joel Weinberger <jww@google.com>;
> Tanvi Vyas <tanvi@mozilla.com>
> *Subject:* Isolate-Me explainer
> Hi webappsec! Mike, Joel, and I have been discussing an idea for a
> developer facing opt-in to allow highly security- or privacy-sensitive
> sites to be isolated from other origins on the web.
> We wrote up the idea here to explain what we're thinking about, why we
> think it's important, and the major open questions: https://mikewest.gi
> thub.io/isolation/explainer.html
> Please read and comment/criticize/etc. Thoughts welcome, either here in
> this thread or as GitHub issues. Especially interested to hear from Mozilla
> folks as it relates to and is heavily inspired by containers.
> Thanks!
> Emily
Received on Monday, 19 September 2016 21:47:43 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 18:54:57 UTC