1055Re: JSON syntax grammar is missing 'undefined' literal value
- May 27, 2008
> Douglas Crockford wrote:On further thought, this is not any more a security concern, than
> > As a name, it is implemented as a writable global
> > variable, a feature with alarming security and reliability
> > consequences.
read-only to prevent against non-malicious untended modification.
any user code. The entire current concept of browser security is
conceptually flawed, and the solution is as follows:
The only trustable web page is the one where ALL referents (resources)
come from a trusted source. Security is fundamentally trust.
Increasing granularity of trust, decreases security conflicts. I give
a proposal using sub-frames to segregate private data from the rest of
the web page.
- << Previous post in topic Next post in topic >>