Corsair MM700 & Corsair Katar Pro XT Review
Guru3D Rig of the Month - February 2021
ASUS GeForce RTX 3060 STRIX Gaming OC review
EVGA GeForce RTX 3060 XC Gaming review
MSI GeForce RTX 3060 Gaming X TRIO review
PALIT GeForce RTX 3060 DUAL OC review
ZOTAC GeForce RTX 3060 AMP WHITE review
Fractal Design Meshify 2 Compact chassis review
Sabrent Rocket 4 PLUS 2TB NVMe SSD review
MSI Radeon RX 6900 XT GAMING X TRIO review
Chrome version 67 Add on Site Isolation as standard for protection against Spectre
Ever since the Intel processor vulnerabilities got exposed, Google has been working hard to to protect the Chrome browser against security vulnerabilities. The company now achieved a final solution, by implementing a function called Site Isolation.
-- Google -- Speculative execution side-channel attacks like Spectre are a newly discovered security risk for web browsers. A website could use such attacks to steal data or login information from other websites that are open in the browser. To better mitigate these attacks, we're excited to announce that Chrome 67 has enabled a security feature called Site Isolation on Windows, Mac, Linux, and Chrome OS. Site Isolation has been optionally available as an experimental enterprise policy since Chrome 63, but many known issues have been resolved since then, making it practical to enable by default for all desktop Chrome users.
This launch is one phase of our overall Site Isolation project. Stay tuned for additional security updates that will mitigate attacks beyond Spectre (e.g., attacks from fully compromised renderer processes).
What is Spectre?
In January, Google Project Zero disclosed a set of speculative execution side-channel attacks that became publicly known as Spectre and Meltdown. An additional variant of Spectre was disclosed in May. These attacks use the speculative execution features of most CPUs to access parts of memory that should be off-limits to a piece of code, and then use timing attacks to discover the values stored in that memory. Effectively, this means that untrustworthy code may be able to read any memory in its process's address space.
This is particularly relevant for web browsers, since browsers run potentially malicious JavaScript code from multiple websites, often in the same process. In theory, a website could use such an attack to steal information from other websites, violating the Same Origin Policy. All major browsers have already deployed some mitigations for Spectre, including reducing timer granularity and changing their JavaScript compilers to make the attacks less likely to succeed. However, we believe the most effective mitigation is offered by approaches like Site Isolation, which try to avoid having data worth stealing in the same process, even if a Spectre attack occurs.
What is Site Isolation?
Site Isolation is a large change to Chrome's architecture that limits each renderer process to documents from a single site. As a result, Chrome can rely on the operating system to prevent attacks between processes, and thus, between sites. Note that Chrome uses a specific definition of "site" that includes just the scheme and registered domain. Thus, https://google.co.uk would be a site, and subdomains like https://maps.google.co.uk would stay in the same process.
Chrome has always had a multi-process architecture where different tabs could use different renderer processes. A given tab could even switch processes when navigating to a new site in some cases. However, it was still possible for an attacker's page to share a process with a victim's page. For example, cross-site iframes and cross-site pop-ups typically stayed in the same process as the page that created them. This would allow a successful Spectre attack to read data (e.g., cookies, passwords, etc.) belonging to other frames or pop-ups in its process.
When Site Isolation is enabled, each renderer process contains documents from at most one site. This means all navigations to cross-site documents cause a tab to switch processes. It also means all cross-site iframes are put into a different process than their parent frame, using "out-of-process iframes." Splitting a single page across multiple processes is a major change to how Chrome works, and the Chrome Security team has been pursuing this for several years, independently of Spectre. The first uses of out-of-process iframes shipped last year to improve the Chrome extension security model.
In Chrome 67, Site Isolation has been enabled for 99% of users on Windows, Mac, Linux, and Chrome OS. (Given the large scope of this change, we are keeping a 1% holdback for now to monitor and improve performance.) This means that even if a Spectre attack were to occur in a malicious web page, data from other websites would generally not be loaded into the same process, and so there would be much less data available to the attacker. This significantly reduces the threat posed by Spectre.
gydj
Member
Posts: 63
Joined: 2015-01-13
Member
Posts: 63
Joined: 2015-01-13
#5565154 Posted on: 07/15/2018 09:53 PM
Now we have protection of all layers from CPU to mobo to OS to software....wonder how much performance cost these have added up to....did they downgrade my 8700k to 7600k?
Now we have protection of all layers from CPU to mobo to OS to software....wonder how much performance cost these have added up to....did they downgrade my 8700k to 7600k?
Fox2232
Senior Member
Posts: 11511
Joined: 2012-07-20
Senior Member
Posts: 11511
Joined: 2012-07-20
#5565155 Posted on: 07/15/2018 10:01 PM
Is this serious?
When you make blatantly false claims, attached to opinions like "trash code", it only undermines your opinion.
The fact of the matter is that Edge can download files larger than 4GB with no problems.
It's sad to continue to see posts like this, spreading false information.
If you don't like Edge that's fine, and there are legit reasons to not like it - no need to make stuff up.
Bandwagon Effect: A psychological theory where individuals will do something primarily because other individuals are doing it. It can also be referred to as herd mentality.
MS had limitations in place long time ago. Because they did not learn how to code stream download.
Edge caches entire download in memory and then puts it to drive. Go, download some large file and observe how it is eating memory. Even in clean release of 1803, moment Edge hits 4GB of ram, it crashes.
I did replicate this issue on 2 separate systems with different OS builds. Why? Because I wanted to download different Windows ISO from microsoft's site.
That's why you have reports like:
Unable to upload a file larger than 1.2GB
Memory leak in Edge and Internet Explorer 11
Timestamp 37:00 ~ 38:30
And best part here is way MS integrates Edge into OS. Try to uninstall it. Or reinstall it.
Is this serious?
When you make blatantly false claims, attached to opinions like "trash code", it only undermines your opinion.
The fact of the matter is that Edge can download files larger than 4GB with no problems.
It's sad to continue to see posts like this, spreading false information.
If you don't like Edge that's fine, and there are legit reasons to not like it - no need to make stuff up.
Bandwagon Effect: A psychological theory where individuals will do something primarily because other individuals are doing it. It can also be referred to as herd mentality.
MS had limitations in place long time ago. Because they did not learn how to code stream download.
Edge caches entire download in memory and then puts it to drive. Go, download some large file and observe how it is eating memory. Even in clean release of 1803, moment Edge hits 4GB of ram, it crashes.
I did replicate this issue on 2 separate systems with different OS builds. Why? Because I wanted to download different Windows ISO from microsoft's site.
That's why you have reports like:
Unable to upload a file larger than 1.2GB
Memory leak in Edge and Internet Explorer 11
Timestamp 37:00 ~ 38:30
And best part here is way MS integrates Edge into OS. Try to uninstall it. Or reinstall it.
Carfax
Senior Member
Posts: 2915
Joined: 2010-05-06
Senior Member
Posts: 2915
Joined: 2010-05-06
#5565184 Posted on: 07/16/2018 03:39 AM
MS had limitations in place long time ago. Because they did not learn how to code stream download.
Edge caches entire download in memory and then puts it to drive. Go, download some large file and observe how it is eating memory. Even in clean release of 1803, moment Edge hits 4GB of ram, it crashes.
I did replicate this issue on 2 separate systems with different OS builds. Why? Because I wanted to download different Windows ISO from microsoft's site.
That's why you have reports like:
Unable to upload a file larger than 1.2GB
Memory leak in Edge and Internet Explorer 11
Timestamp 37:00 ~ 38:30
And best part here is way MS integrates Edge into OS. Try to uninstall it. Or reinstall it.
I've downloaded files that were well over 4GB with Edge, so your installation must be screwed up somehow. Also the download limit you're speaking of was from way back in the 32 bit era with Internet Explorer 6 and 7. The download limit was completely removed with IE8.
As for Edge, it's my preferred browser on desktop due to its speed, efficiency and security. On mobile I use Chrome.
MS had limitations in place long time ago. Because they did not learn how to code stream download.
Edge caches entire download in memory and then puts it to drive. Go, download some large file and observe how it is eating memory. Even in clean release of 1803, moment Edge hits 4GB of ram, it crashes.
I did replicate this issue on 2 separate systems with different OS builds. Why? Because I wanted to download different Windows ISO from microsoft's site.
That's why you have reports like:
Unable to upload a file larger than 1.2GB
Memory leak in Edge and Internet Explorer 11
Timestamp 37:00 ~ 38:30
And best part here is way MS integrates Edge into OS. Try to uninstall it. Or reinstall it.
I've downloaded files that were well over 4GB with Edge, so your installation must be screwed up somehow. Also the download limit you're speaking of was from way back in the 32 bit era with Internet Explorer 6 and 7. The download limit was completely removed with IE8.
As for Edge, it's my preferred browser on desktop due to its speed, efficiency and security. On mobile I use Chrome.
Aura89
Senior Member
Posts: 8141
Joined: 2008-07-31
Senior Member
Posts: 8141
Joined: 2008-07-31
#5565191 Posted on: 07/16/2018 06:03 AM
MS had limitations in place long time ago. Because they did not learn how to code stream download.
Edge caches entire download in memory and then puts it to drive. Go, download some large file and observe how it is eating memory. Even in clean release of 1803, moment Edge hits 4GB of ram, it crashes.
I did replicate this issue on 2 separate systems with different OS builds. Why? Because I wanted to download different Windows ISO from microsoft's site.
That's why you have reports like:
Unable to upload a file larger than 1.2GB
Memory leak in Edge and Internet Explorer 11
Timestamp 37:00 ~ 38:30
And best part here is way MS integrates Edge into OS. Try to uninstall it. Or reinstall it.
Not sure what you're on about, just downloaded windows 10, the file you specifically talked about on edge (and yes, i prefer chrome), it was 4.4Gb, and had no issues downloading it. If you have a file website with something else, or something bigger, by all means i'll try it again, but Edge did not have any problems whatsoever with downloading Windows 10, 1803, english, 64bit, 4.4GB (says 4.5 on windows after downloaded, said 4.4 while downloading) ISO directly from microsoft.
I'm also not certain what you're talking about in regards to downloading and memory, as this was at 95% of that 4.4GB download, and i watched it mostly the whole time i was downloading, compared to Chrome, which currently has imgur, guru3d and google search opened.
MS had limitations in place long time ago. Because they did not learn how to code stream download.
Edge caches entire download in memory and then puts it to drive. Go, download some large file and observe how it is eating memory. Even in clean release of 1803, moment Edge hits 4GB of ram, it crashes.
I did replicate this issue on 2 separate systems with different OS builds. Why? Because I wanted to download different Windows ISO from microsoft's site.
That's why you have reports like:
Unable to upload a file larger than 1.2GB
Memory leak in Edge and Internet Explorer 11
Timestamp 37:00 ~ 38:30
And best part here is way MS integrates Edge into OS. Try to uninstall it. Or reinstall it.
Not sure what you're on about, just downloaded windows 10, the file you specifically talked about on edge (and yes, i prefer chrome), it was 4.4Gb, and had no issues downloading it. If you have a file website with something else, or something bigger, by all means i'll try it again, but Edge did not have any problems whatsoever with downloading Windows 10, 1803, english, 64bit, 4.4GB (says 4.5 on windows after downloaded, said 4.4 while downloading) ISO directly from microsoft.
I'm also not certain what you're talking about in regards to downloading and memory, as this was at 95% of that 4.4GB download, and i watched it mostly the whole time i was downloading, compared to Chrome, which currently has imgur, guru3d and google search opened.
Click here to post a comment for this news story on the message forum.
Senior Member
Posts: 248
Joined: 2013-09-27
Is this serious?
When you make blatantly false claims, attached to opinions like "trash code", it only undermines your opinion.
The fact of the matter is that Edge can download files larger than 4GB with no problems.
It's sad to continue to see posts like this, spreading false information.
If you don't like Edge that's fine, and there are legit reasons to not like it - no need to make stuff up.
Bandwagon Effect: A psychological theory where individuals will do something primarily because other individuals are doing it. It can also be referred to as herd mentality.