You have 0 further articles remaining this month. Join for free to read unlimited articles.


We take browsers for granted; they're ubiquitous and they've been around for ages... But have you ever stopped to think about what they _do_?

They execute arbitrary code, from untrusted sources on the Internet... by design. And were supposed to be OK with that? Unsurprisingly, how they do this provides some useful lessons in how we can design and build secure systems. This talk, from a security engineer (and recovering browser engineer) takes you through some of these lessons.