In-depth analysis of Microsoft's next-generation browser gazelle

Recently, Microsoft researchers announced a new-generation security browser design plan. The next-generation security browser named gazelle uses the multi-principal architecture to control the security of all system resources.

Microsoft researchers pointed out that the gazelle browser was originally used by users to search for static website applications.ProgramBut with the rapid development of dynamic website technology, the gazelle browser gradually forms a multi-Principal Environment to share resources of different websites. Nowadays, existing browsers, such as IE8 and googlechrome, cannot control the security of all system resources through browsers. Therefore, Microsoft has created gazelle to provide a complete solution.

The researchers claim that gazelle's core browser is an operating system that handles resource protection and shares website resources. Its complex design has never been seen before, including cross-process display and event protection. In the prototype program of gazelle, Microsoft has basically transformed the browser to the multi-principal system, ensuring its security and compatibility.

According to the study report, gazelle's browser core operates in an independent operating system program and defines and separates browser subjects through the same source policy (same-originpolicy, sop, as well as executing programs in an independent sandbox, it does not affect the underlying operating system. When the program between the browser and the master machine needs to interact, the browser kernel uses cross-principal communication (cross-principal communication.

The browser kernel designed by the research team can operate in a specially protected field and handles communications between different browsers and operating systems, coordinate the above operations to save system resources. Let the browser have its own core, which means it is like a small operating system that can identify traffic or handle malware, while distinguishing the operating environment of the browser and the operating system, it also reduces the chances of system exposure to threats.

Although the Team believes there is already a chance to implement gazelle's design from the perspective of prototype programs, they acknowledge that gazelle is not performing fast at the current stage and is still in the pilot phase. In addition, Microsoft's research team originally conducted multiple research sessions, from operating systems to browsers. Therefore, exposure of the design concept of gazelle does not mean that it will replace Microsoft's IE browser.