Google Developers Japan: Chrome の Site Isolation で Spectre のリスクを軽減する

Local blog for Japanese speaking developers

Chrome の Site Isolation で Spectre のリスクを軽減する

2018年8月30日木曜日

この記事は Charlie Reis, Site Isolator による Google Online Security Blog の記事 "Mitigating Spectre with Site Isolation in Chrome" を元に翻訳・加筆したものです。詳しくは元記事をご覧ください。Site IsolationSpectre とは
投機的実行のサイドチャネル攻撃Spectre の亜種いくつかの軽減策を導入最も有効な軽減策Site Isolation とは
Site Isolationマルチプロセスアーキテクチャプロセス外 iframeこの点を数年にわたって追求してきましたChrome 拡張機能のセキュリティモデルを改善する

1 つのページが、プロセス外 iframe を使う複数のレンダラープロセスに分割される可能性もあります。

Cross-Origin Read BlockingFetch 仕様正しい MIME タイプと nosniff レスポンスヘッダーをつけてリソースを提供していることを確認する必要があります既知の問題Site Isolation のメリット
現在進行中のその他の作業
当初の目的の改善にご協力を！
Chrome Vulnerability Reward ProgramChrome New Feature Special RewardsEiji Kitamura - Developer Relations Team

ラベル

.app 1
.dev 1
#DevFest16 1
#DevFest17 1
#DevFest18 1
#DevFest19 1
#hack4jp 3
A/B Testing 1
A4A 4
Actions on Google 16
Activation Atlas 1
Addy Osmani 1
ADK 2
AdMob 31
Ads 45
Ads API 38
AdWords API 11
Agency 1
AI 10
AIY 3
AIY Vision Kit 2
ALPN 1
AMP 83
AMP Cache 6
AMP for Email 3
AMP SSR 1
AMP Story 2
AMP Toolbox 1
amp-bind 1
AMPHTML Ads 1
Analytics 9
Andorid 12
Android 347
Android Auto 1
Android Design Support Library 1
Android Developer Story 4
Android Developers 4
Android Enterprise 5
Android Go 1
Android Jetpack 3
Android N 18
Android O 13
Android P 7
Android Pay 1
Android Q 13
Android Security Year in Review 1
Android Studio 38
Android Support Library 6
Android Things 15
Android TV 10
Android Vitals 3
Android Wear 29
androidmarket 3
AndroidX 5
Angular 2
Angular 2 2
AngularJS 2
AoG 1
API 25
APIExpert 45
apk 2
APM 1
app 3
App Action 1
app engine 23
App Indexing 7
App Invites 6
App Maker 2
AppCompat 2
Apps Script 11
aprilfool 4
AR 2
Architecture Components 7
ARCore 1
ArtTech 1
Associate Android Developer Certificate 1
Audio 7
Auth Code 1
Authentication 8
AuthSub 2
Autofill 1
AutoML 1
Autotrack 2
award 1
Awareness API 1
Beacons 6
Better Ads Standards 1
BigQuery 9
Billing 1
BLE 4
Blink 1
Blockly 1
blogger 1
BodyPix 1
Brillo 1
Brotli 2
Budou 1
Calendar 3
Canvas 1
Cardboard 4
Career 1
Case Study 1
Certificate 2
chrome 125
Chrome Custom Tab 2
Chrome Dev Summit 2
chrome extension 11
Chrome for Android 2
Chrome for iOS 2
Chrome OS 6
Chrome Tech Talk Night 4
Chromebook 3
Chromecast 7
chromewebstore 7
Chromium 5
CLI 1
ClientLogin 3
Closure Compiler 1
Cloud 21
Cloud Firestore 5
Cloud Functions 9
Cloud IoT Device SDK 1
Cloud Next 8
Cloud OnBoard 3
Cloud PubSub 1
Cloud Storage 1
Cloud Study Jams 3
Cloud Summit 1
Cloud Test Lab 2
Cloudflare 1
CNN 1
Coalition for Better Ads 1
CocoaPods 1
codejam 5
codelab 4
Colaboratory 1
Community 3
compute engine 3
Context 1
Cookie 1
Coral 2
Crash Reporting 2
Crashlytics 2
Dart 2
DataCenter 1
Daydream 4
Deep Learning 4
Demo Party 1
Design Sprint 3
DesignBytes 1
DevArt 3
DevBytes 6
Developer 14
Developer Console 4
Developer Preview 6
Developer Relations 2
DevFest 8
DevFestX 3
DevOps 1
devtools 4
Dialogflow 1
Differential privacy 1
DirectShare 1
DNS-over-HTTPS 1
Domain 1
Doodle 1
DoubleClick 4
Doze モード 1
drive 2
Dynamic Links 3
EarlGrey 1
Easter Egg 1
ECMAScript 2015 1
Eddystone 4
egypt 1
Encryption 1
English 2
ES2015 1
ES2016 1
ES6 2
ES7 1
Event 1
Featured 2
Firebase 117
Firebase Admin SDK 6
Firebase Analytics 10
Firebase Auth 4
Firebase Cloud Messaging 10
Firebase Crashlytics 2
Firebase Database 5
Firebase Libraries 1
Firebase Notifications 1
Firebase Performance 3
Firebase Remote Config 5
Flash 1
Flutter 6
font 3
fraud 1
G Suite 18
game 39
Game Developers Conference 2018 1
Game Developers Conference 2019 1
Gboard 1
GCP 13
GCPUG 1
GDD11JP 56
GDD2010JP 23
GDE 2
GDG 18
GDG Cloud 1
Geo 51
Gingerbread 1
GLIDE 5
Gmail 4
Gmail API 2
Go 1
golang 5
goo.gl 1
Google 6
Google Analytics 3
Google API 1
Google Apps 14
Google Apps Script 4
Google Assistant 10
Google Assistant SDK 2
Google Cast 8
Google Cloud 25
Google Cloud INSIDE Digital 1
Google Cloud INSIDE Games & Apps 6
Google Cloud INSIDE Retail 1
Google Cloud Messaging 11
Google Cloud Platform 11
Google Code-in 1
Google Developer Experts 2
Google Developers Academy 1
Google Developers live 5
Google Developers Summit 2
Google Drive 6
Google Earth 1
Google Fit 2
Google for Mobile 2
Google for Work 1
Google I/O 17
Google Impact Challenge 1
Google Maps 59
Google Maps Platform 10
Google ML Summit 1
Google Pay 2
Google Photo 1
Google Play 110
Google Play Console 9
Google Play Game Services 9
Google Play Instant 1
Google Play Services 23
Google Plus 14
Google Search 7
Google Sheets API 3
Google Sign-In 12
Google Slides API 5
Google Summer of Code 1
Google Tag Manager 1
Google Trust Services 1
Google マップ 4
Google+ 2
Googleapps 10
GoogleGames 1
GoogleI/O 28
GoogleLabs 1
GooglePlay 1
GoogleTV 1
Gradle 1
gRPC 2
GTUG 5
GWT 2
hack4jp 2
hackathon 7
Hangouts Chat 2
Hosting 3
HTML5 17
HTML5Rocks 1
HTTP/2 5
HTTPS 12
I/O Extended 4
ID Token 1
Identity 15
Identity Toolkit 1
Ignite 4
IME 11
Indie Games Festival 2018 2
Indie Games Festival 2019 12
Inevitable ja Night 25
Instagram 1
Instant Apps 6
intern 2
Invites 1
IO19 3
iOS 20
IoT 6
IPv6 1
Issue Tracker 2
Japanese Input 1
JavaScript 9
Jetpack 1
K-12 1
Key Transparency 1
Knowledge Graph 1
Kotlin 10
Kubernetes 1
l10n 8
LaunchPad 1
Lighthouse 1
LINE 1
Local AI 1
Lollipop 10
Machine Learning 22
Maker Faire Tokyo 1
Marshmallow 10
Material 1
Material Design 30
MDL 1
MDN 1
metrics 1
MIDI 2
ML Kit 11
Mobile 13
Mobile Bootcamp 4
Mobile Sites certification 1
Mobile Vision 4
mod_pagespeed 1
monetize 3
Mozc 15
Music 1
NativeDriver 2
NativeScript 1
NBU 1
ndk 3
Nearby 5
Next Extended 1
Next Tokyo 3
Nexus 2
Nexus S 1
NFC 1
Node.js 3
Noto CJK 1
NPAPI 2
NPN 1
oauth 11
OpenAI 1
opencensus 1
OpenGL 4
OpenID 3
OpenID Connect 4
OpenSocial 1
opensource 17
Optimization 1
Payment 4
PEM 33
People API 2
Performance 12
Performance budget 1
PersonFinder 1
Physical Web 3
Pi 1
Place Picker 1
Play Billing Library 2
Player Analytics 4
Playtime 2017 1
Policy 4
Polymer 7
privacy 4
Progressive Web Apps 14
project hosting 1
Promise 1
Promo code 1
Protocol Buffers 1
PRPL 1
publicdata 1
Push API 1
Push Notification 3
PWA 3
Python 2
QUIC 1
QWIKLABS 3
RAIL 1
React 1
React Native 2
Realtime Database 9
Recap Live Japan 2019 3
reCaptcha 1
Redux 1
Remote Config 3
Remote Display API 1
Resonance Audio 1
Rewarded Video Ads 2
Runtime Permission 1
Safe Browsing 1
Sample Code 2
Santa Tracker 1
schema.org 1
secur 1
security 51
Service Worker 4
SHA-1 1
sketchup 1
SmartLock for Passwords 4
social 4
Social Good 1
Social Media 1
SPDY 3
speak2tweet 1
Spreadsheet 3
SSR 1
startup 5
Storage 2
story 1
streetview 3
Study Jams 7
Swift 2
SwiftShader 1
Symantec 1
Task 4
Team Drive 1
techtalk 12
TensorFlow 27
TensorFlow Federated 1
TensorFlow Lite 4
TensorFlow Object Detection API 1
TensorFlow Probability 2
TensorFlow.js 1
test 4
Test Lab 6
TFX 1
ToS 1
trace 1
Transliteration 1
Twitter 1
Udacity 20
Unity 3
UX 4
V8 2
VP9 1
VR 11
Vulkan 2
Watch Face 2
wave 2
Wear OS 2
Weave 1
Web 25
Web Animations 1
Web Components 6
Web Manifest 1
Web Packaging 3
WebAssembly 4
WebGL 1
WebMusic 5
WebView 1
Women Techmakers Scholars Program 1
WTM 5
Xcode 1
YouTube 17
YouTube API 1
インタビュー 1
コードサンプル 1
プライバシー 1
機械学習 2
言論の自由 1
節電 3
東日本大震災 9
日本語入力 41

ブログアーカイブ

2019
- 11
- 10
- 9
- 8
- 7
- 6
- 5
- 4
- 3
- 2
- 1

2018
- 12
- 11
- 10
- 9
- 8
- 7
- 6
- 5
- 4
- 3
- 2
- 1

2017
- 12
- 11
- 10
- 9
- 8
- 7
- 6
- 5
- 4
- 3
- 2
- 1

2016
- 12
- 11
- 10
- 9
- 8
- 7
- 6
- 5
- 4
- 3
- 2
- 1

2015
- 12
- 11
- 10
- 9
- 8
- 7
- 6
- 5
- 4
- 3
- 2

2014
- 12
- 11
- 10
- 9
- 8
- 7
- 6
- 5
- 4
- 3
- 2
- 1

2013
- 12
- 11
- 10
- 9
- 8
- 7
- 6
- 5
- 4
- 3
- 2
- 1

2012
- 12
- 11
- 10
- 9
- 8
- 7
- 6
- 5
- 4
- 3
- 2
- 1

2011
- 12
- 11
- 10
- 9
- 8
- 7
- 6
- 5
- 4
- 3
- 2
- 1

2010
- 12
- 11

Feed

"プロダクトに関するご意見はプロダクトフォーラムにお願いします"

Google Japan

Google Japan Blog
Google ウェブマスター向け公式ブログ
Google Apps アップデートブログ

Products

Android Blog
Chrome Blog
Lat Long Blog

Developers

Google Developers
Google Developers Japan YouTube
Google Developers Japan Forum

Google
Privacy
Terms