Good idea :)
One thing I've found rather annoying is each page/tab group in incognito mode is in the same "session" Hopefully this sorts it. One reason I've been playing with containers in Firefox lately (certainly for antisocial media).
Google is touting the benefits of a recently rolled out browser security feature called Site Isolation. Site Isolation has been gradually introduced to users of the Chrome browser over several months, and now Google has officially unveiled this important piece of tech. With Site Isolation is enabled, Chrome runs a different …
This is an interesting development but it appears to be a tarted up announcement from Google.
A bit more journalistic work would have included a comparison and update of similar features for Firefox and Edge. Many of us have to manage such installations yet don’t have the deep knowledge to fully understand what specific features these other browsers have, if any yet, to mitigate the issues raised in this article.
Can anyone kindly fill in for El Reg’s tardiness and update us please? Thanks in advance.
i would assume the downvotes would be for the critiquing the quality of journalism from el reg.
it is Friday after all and you want them to do additional work that 5 min on google will provide you with what you seek....
but it is Friday, so you should be forgiven for not wanting to do some work at beer-o'clock
I guess a beer at 21:37 last night is well deserved, but still, could do with knowing how Firefox and Edge compare to these latest improvements to Chrome. I hate Google, but I'll even stoop to using their browser if it's more secure than my favourite Firefox, and even that half attempt at a good browser called Edge.
I hate to be the one who pees in the coffee, but Vladimir Kiriansky and Carl Waldspurger uncovered two more Spectre flaws in Intel processors. They have been labeled Spectre 1.1 and 1.2.
From Tom's Hardware (https://www.tomshardware.co.uk/intel-arm-new-spectre-flaws,news-58807.html):
"The researchers noted in their paper that currently no effective static analysis or compiler instrumentation can even detect or mitigate Spectre 1.1. They also added that Spectre v1 mitigations can stop only subset of the possible attacks against that flaw.
...
... hardware changes will be necessary for true long-term fixes that can stop Spectre flaws from appearing."
The fact that browsers run JavaScript (and WebAssembly) will make fixing them close to impossible.
We need to get the hardware fixed. Intel still releasing FULLY BOGUS new chips makes it obvious that they don't feel enough pressure. I hope the lawsuits make it through and change something, otherwise what remains is digging holes in the water.
"I hate to be the one who pees in the coffee, but Vladimir Kiriansky and Carl Waldspurger uncovered two more Spectre flaws in Intel processors. They have been labeled Spectre 1.1 and 1.2."
Given that El Reg reported on it earlier than the site you link, I'm not sure exactly whose coffee you think you're peeing in. I'm also not sure how you think mentioning variants on the same issue is particularly relevant to Google's work on avoiding the whole thing entirely in Chrome - there's nothing to suggest the new variants will break the mitigation, so they're really not relevant here.
"Given that El Reg reported on it earlier than the site you link, I'm not sure exactly whose coffee you think you're peeing in."
They did, but somehow I can't find the more critical comments of the researchers in there. To me, The Register's version sounds overly positive.
"I'm also not sure how you think mentioning variants on the same issue is particularly relevant to Google's work on avoiding the whole thing entirely in Chrome..."
Oh, they did so? Have they turned off scripting entirely now?
Which part of
>> The researchers noted in their paper that currently no effective static analysis or compiler instrumentation can even detect or mitigate Spectre 1.1. <<
do you not understand?