Basic HTML version of Foils prepared May 19 99

Foil 141 JavaScript Security Issues

From Remarks on Internet and Java Security Basic Information Track Computational Science Course CPS616 -- Spring Semester 1999. by Geoffrey Fox, Mehmet Sen
Signed Script Policy comes with Netscape version 4.
In Navigator 3.0, one could use data tainting to get access to additional information.
  • This was very clumsy and almost impossible to use and in particular to make precise
However, Navigator 4.0 replaces data tainting with the signed script policy. Because signed scripts provide greater security and greater precision than tainting, tainting has been disabled in Communicator 4.x.

© Northeast Parallel Architectures Center, Syracuse University, npac@npac.syr.edu

If you have any comments about this server, send e-mail to webmaster@npac.syr.edu.

Page produced by wwwfoil on Wed May 19 1999