Chromium‎ > ‎Chromium Security‎ > ‎

Secure Architecture

One of our core security principles is, "Design for defense in depth." Some of the things we've done or are working on to live up to this principle include:

Background

Sandboxing

Platform-specific sandboxing

Plugin sandboxing

Site Isolation

We're currently working on using Chrome's sandbox to isolate websites from each other via the Site Isolation project, which will help to mitigate cross-site information leaks (among other threats) in the presence of a vulnerability in the renderer process.

Anti-Exploitation Technologies and Tactics

Background

http://seclab.stanford.edu/websec/chromium/chromium-security-architecture.pdf