I am confused
Surely this is a huge backward step? MS have just spent years trying to protect the computer FROM the browser, so that IE7 and 8 run in 'protected mode', reversing their bad decision to integrate IE so tightly in with the OS.
So in order to protect us from cross scripting they propose to give the browser direct access to hardware and control of our whole computer again?
Perhaps I'm just stoopid, but I don't get it.
Surely the answer to cross scripting is quarantining browser instances from each other.
To this purpose, with virtual machines on the desktop in the future, surely this is a key application that would benefit? Giving any old website access to my hard disk again is NOT something I wish to do. I didn't like it last time, and it didn't turn out all too well, as I recall.
If you can't run 20 VMs at once, surely a special 'secure mode' VM that launches your banking site, and others for your trusted shopping sites is the answer. Then you run all your other browser sessions in one VM, where you are less worried about cross scripting.
My current solution is to run online banking only after shutting down Firefox and re-starting it. With no other sites open until I've finished. It's not that hard, and seeing as you get timed out so quickly on the bank's sites, it's no loss to my productivity.