The Tor Browser Bundle team should also look for ways to enhance protection against use-after-free exploits. The list of long-term recommendations includes replacing the "jemalloc" allocator with "ctmalloc" and other partition object allocation types to make the exploitation of heap corruption vulnerabilities more difficult.
While the Tor Project is interested in the idea and encourages potential sponsors to step forward, it's uncertain if they'll be able to prepare for the March 2015 edition. The idea is to give Pwn2Own participants the opportunity to find flaws specific to the browser in a semi-hardened configuration. The developers of the Tor Browser should also consider testing and recommending the use of Microsoft's Enhanced Mitigation Experience Toolkit ( EMET), which detects and neutralizes certain exploitation techniques.Īnother recommendation made by iSEC is to find vulnerabilities in the Tor Browser by entering it the Pwn2Own competition that takes place each year along the CanSecWest security conference. He says they're working on addressing the Windows issues, but it's more complicated for Mac and they might have to build 64-bit versions of the Tor Browser for full support. Mike Perry, lead developer of the Tor Browser, admitted in a blog post that several hardening features have been disabled due to the use of cross-compilation and non-standard toolchains in the reproducible build system. One of the short-term recommendations made by iSEC is re-enabling Address Space Layout Randomization (ASLR) on Windows and Mac builds.
In the "high" level, JavaScript will be completely disabled, remote fonts will be blocked via NoScript, and all media codecs (except WebM, which remains click-to-play) will be disabled. For example, the "low" mode will be the current Tor Browser settings, with the addition of JIT support. The Security Slider will have four levels: low, medium-low, medium-high and high. This, along with other information on public and private exploits, is useful for the Security Slider, an upcoming feature that will allow users to disable certain elements of the browser for enhanced security. Since the Tor Browser is based on Firefox, researchers have also performed a historical vulnerability analysis on Mozilla's Web browser. The study, commissioned by the Open Technology Fund, the primary funder of the Tor Browser, focused on reviewing current hardening options and finding additional ways of making the software more difficult to exploit. A recent study conducted by iSEC Partners provided the developers of the Tor Browser Bundle with several long and short-term recommendations on how to make the application more secure.
0 kommentar(er)
