Linked by Thom Holwerda on Thu 24th Sep 2009 19:17 UTC
Internet Explorer Earlier this week, Google launched Chrome Frame, a plugin for Internet Explorer 6/7/8 which replaces the Trident rendering engine with Chrome's rendering and JavaScript engine for better performance and superior standards compliance. Microsoft has responded to this release, claiming it makes Internet Explorer less secure. Note: What database category do I put this in? Internet Explorer? Google? Choices, choices!
Thread beginning with comment 386107
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE: Microsoft is right
by emilsedgh on Thu 24th Sep 2009 23:22 UTC in reply to "Microsoft is right"
emilsedgh
Member since:
2007-06-21

Technically, what you said is not right.

Each browser is built of two main parts:
1) HTML/CSS/Javascript handling part
2) Main application

What this plugin does, is to 'replace' the first part.
So its NOT 'adding' any security whole. If there is a security whole in trident (IE's html/css/js handling stuff) it will not be applicable when this plugin is active.

And since this plugin, is actually webkit, and webkit is far more safer and cooler than trident, practically it will increase the damn security.

Reply Parent Score: 1

RE[2]: Microsoft is right
by foldingstock on Fri 25th Sep 2009 16:26 in reply to "RE: Microsoft is right"
foldingstock Member since:
2008-10-30

Right, but if there is even one vulnerability in WebKit, it is a vulnerability that would not have been there had the WebKit plugin not been installed. That is the genius of Microsoft's statement. It doesn't matter that WebKit makes IE more secure than it is now.

Reply Parent Score: 1

RE[3]: Microsoft is right
by emilsedgh on Fri 25th Sep 2009 17:41 in reply to "RE[2]: Microsoft is right"
emilsedgh Member since:
2007-06-21

You are not getting my point. It 'replaces' the damn security bugs. So if you have it working on a web page, you are not affected by trident security treats.

Reply Parent Score: 1

RE[3]: Microsoft is right
by lemur2 on Sat 26th Sep 2009 12:23 in reply to "RE[2]: Microsoft is right"
lemur2 Member since:
2007-02-17

Right, but if there is even one vulnerability in WebKit, it is a vulnerability that would not have been there had the WebKit plugin not been installed. That is the genius of Microsoft's statement. It doesn't matter that WebKit makes IE more secure than it is now.


Google disagree, perhaps unsurprisingly.

http://www.computerworld.com/s/article/9138522/Google_barks_back_at...

Google barks back at Microsoft over Chrome Frame security
Defends plug-in, says it makes IE more secure, not less.

Google hit back at Microsoft today, defending the security of its new Chrome Frame plug-in and claiming that the software actually makes Internet Explorer (IE) safer and more secure.


Microsoft's statement was in no way "genius", it was just self-serving FUD.

Edited 2009-09-26 12:24 UTC

Reply Parent Score: 2