User:PGibbons/ADsafe

ADsafe
Paradigm	object-capability
Designed by	Douglas Crockford
First appeared	2007
Influenced by
	Javascript
Influenced
	Caja project

ADsafe is an object-capability subset of Javascript. From the project's home page[1]:

ADsafe makes it safe to put guest code (such as third party scripted advertising or widgets) on a web page. ADsafe defines a subset of JavaScript that is powerful enough to allow guest code to perform valuable interactions, while at the same time preventing malicious or accidental damage or intrusion. The ADsafe subset can be verified mechanically by tools like JSLint so that no human inspection is necessary to review guest code for safety.

ADsafe is significant for being a relatively simple object-capability subset language. Unlike Caja, another system for sandboxing Javascript code, ADsafe does not do source-to-source rewriting of Javascript, but uses a source code verifier.

References[edit]

^ Early post about JSLint's ADsafe feature to the caplet mailing list, Douglas Crockford, 2007/09/30, retrieved 2009/11/21.

External links[edit]

ADsafe project

This computer-programming-related article is a stub. You can help Wikipedia by expanding it.

[1] Early post about JSLint's ADsafe feature to the caplet mailing list, Douglas Crockford, 2007/09/30, retrieved 2009/11/21.

[1]

v t e Object-capability security
Concepts	Principle of least privilege (PoLP) Confused deputy problem Ambient authority File descriptor C-list Object-capability model Capability-based security Capability-based addressing Zooko's triangle Petnames
Operating systems, kernels	Capsicum Fuchsia Genode GNOSIS → KeyKOS → EROS → CapROS Hydra iMAX 432 Midori NLTSS seL4 HarmonyOS (HarmonyOS NEXT) Phantom OS
Programming languages	Cajita E Joe-E Joule
File systems	Tahoe-LAFS
Specialised hardware	BiiN Cambridge CAP Flex IBM System/38 Intel iAPX 432 Plessey System 250