Native Client: A Sandbox for Portable, Untrusted x86 Native Code

This paper describes the design, implementation and evaluation
of Native Client, a sandbox for untrusted x86 native
code. Native Client aims to give browser-based applications
the computational performance of native applications without
compromising safety. Native Client uses software fault
isolation and a secure runtime to direct system interaction
and side effects through interfaces managed by Native
Client. Native Client provides operating system portability
for binary code while supporting performance-oriented features
generally absent from web application programming
environments, such as thread support, instruction set extensions
such as SSE, and use of compiler intrinsics and
hand-coded assembler. We combine these properties in an
open architecture that encourages community review and
3rd-party tools.



Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s