Are they using the right technology?
Posted May 23, 2012 22:13 UTC (Wed) by khim
In reply to: Are they using the right technology?
Parent article: A Tale of Two Pwnies (Part 1)
The higher-level languages all abstract these things away too much, or don't expose them at all, so you wouldn't have enough control to do what Chrome does.
The reality is even worse. All such high-level supersafe languages are either slow as molasses or have huge core with JITs and other PhD-worthy components which in practice end up even less secure then Chrome.
Don't forget that number one attack vector is not even MSIE nowadays, but JRE plugin and the second one is Adobe's Flash (which supposedly uses 100% safe ActionScript). Talk about safe languages :-)
to post comments)