Rob Sayre's Mozilla Blog

Doug Crockford has a really interesting talk on Google Video that discusses browser security and message passing systems:

We routinely ask questions of the user which they cannot possibly answer. Even if they understood the question, we don’t give them sufficient information to answer it. All it does is allow us to say it’s their fault for making the wrong choice. This is an intolerable way to do security systems, and any security which is based on this is a false promise.

Hear, hear! I just wish it wasn’t interpersed with unsubstantiated criticism of JavaScript2 (listen closely and you’ll find zero technical content in Crockford’s remarks) and clumsy corporate strategy.

Rob Pike has a similar talk up, and it’s not hard to see that concurrent programming and security partitioning can be accomplished with many of the same techniques. Looks sort of like Erlang.