Select Page

PL Perspectives

Perspectives on computing and technology from and for those with an interest in programming languages.
Archive of posts tagged: computer security
Making Software Sandboxing Practical using Language-based Techniques

Making Software Sandboxing Practical using Language-based Techniques

Software sandboxing or software-based fault isolation (SFI) is a lightweight approach to building secure systems out of untrusted components. The idea of SFI is old. Its use in production, to sandbox third-party libraries in Firefox, is new. We describe the PL techniques—notably static information flow control—that were key to deploying SFI in practice and their use in tackling software security more generally.

Read more...