Native Client is a sandbox for untrusted x86 native code. It aims to give browser-based applications the computational performance of native applications without compromising safety. Native Client uses software fault isolation and a secure runtime to direct system interaction and side effects through interfaces it controls. It further provides operating system portability for binary code while supporting performance-oriented features generally absent from Web application programming environments, such as thread support, instruction set extensions such as SSE, and use of compiler intrinsics and hand-coded assembler. We combine these properties in an open architecture that encourages community review and third-party tools.
%0 Journal Article
%1 YeeSehrEtAl10cacm
%A Yee, Bennet
%A Sehr, David
%A Dardyk, Gregory
%A Chen, J. Bradley
%A Muth, Robert
%A Ormandy, Tavis
%A Okasaka, Shiki
%A Narula, Neha
%A Fullagar, Nicholas
%D 2010
%J Communications of the ACM
%K binary framework performance portable sandbox security
%N 1
%P 91-99
%R 10.1145/1629175.1629203
%T Native Client: A Sandbox for Portable, Untrusted x86 Native Code
%V 53
%X Native Client is a sandbox for untrusted x86 native code. It aims to give browser-based applications the computational performance of native applications without compromising safety. Native Client uses software fault isolation and a secure runtime to direct system interaction and side effects through interfaces it controls. It further provides operating system portability for binary code while supporting performance-oriented features generally absent from Web application programming environments, such as thread support, instruction set extensions such as SSE, and use of compiler intrinsics and hand-coded assembler. We combine these properties in an open architecture that encourages community review and third-party tools.
@article{YeeSehrEtAl10cacm,
abstract = {Native Client is a sandbox for untrusted x86 native code. It aims to give browser-based applications the computational performance of native applications without compromising safety. Native Client uses software fault isolation and a secure runtime to direct system interaction and side effects through interfaces it controls. It further provides operating system portability for binary code while supporting performance-oriented features generally absent from Web application programming environments, such as thread support, instruction set extensions such as SSE, and use of compiler intrinsics and hand-coded assembler. We combine these properties in an open architecture that encourages community review and third-party tools.},
added-at = {2010-02-21T15:26:13.000+0100},
author = {Yee, Bennet and Sehr, David and Dardyk, Gregory and Chen, J. Bradley and Muth, Robert and Ormandy, Tavis and Okasaka, Shiki and Narula, Neha and Fullagar, Nicholas},
biburl = {https://www.bibsonomy.org/bibtex/2cec45dd3fadba7753035094b3c4baff7/gwpl},
doi = {10.1145/1629175.1629203},
file = {ACM Digital Library:2010/YeeSehrEtAl10cacm.pdf:PDF},
interhash = {483e99d765861dea209f8532c77426f7},
intrahash = {cec45dd3fadba7753035094b3c4baff7},
issn = {0001-0782},
journal = {Communications of the ACM},
keywords = {binary framework performance portable sandbox security},
number = 1,
pages = {91-99},
timestamp = {2010-02-21T15:26:13.000+0100},
title = {{Native Client}: A Sandbox for Portable, Untrusted x86 Native Code},
volume = 53,
year = 2010
}