Separation
Quote: Thirdly, I don't get this idea that something like this brings anything new security-wise, to quote "In limiting all apps to the web and confining each app to its own sandbox, Google also claims the Chrome netbook is more secure than today's machines." I just don't see it -- the apps on my Linux box all have memory protection, so they can't write to the memory owned by the OS or other apps. They are limited to where they can write to disk, and what they can read. Sounds like a sandbox to me! It could be (and probably is in theory) more secure due to the limited number of applications and programs on the system (i.e. less of a "code surface" to exploit). ---
Ah, but can the apps read and write each others' data? *That's* the security they're talking about. One rogue app can't go rifling thru all your other data.