From 5b9d2d2e8560163dfaeea64991890fae4e103771 Mon Sep 17 00:00:00 2001 From: Libor Polčák Date: May 05 2023 08:24:37 +0000 Subject: Clarify texts on Web Workers --- diff --git a/main.tex b/main.tex index cfdf362..067d5ad 100644 --- a/main.tex +++ b/main.tex @@ -904,8 +904,7 @@ an unwrappable pseudo array (e.g. \verb|window[0]| is a synonym of all not yet patched \verb|window[n]| objects every time the DOM structure is modified, potentially creating new windows. This requires accounting for all methods and accessors by which the DOM can be changed in JavaScript and wrapping them\footnote{\url{https://github.com/hackademix/nscl/blob/20220330/content/patchWindow.js\#L311}}. -Regarding web workers, \jshelter{} emulates them in the main -thread (inheriting the wrapped JavaScript environment) by default. +Regarding web workers, \jshelter{} disables them by default. The \NSCL{} provides another option: wrapping workers by injecting the wrappers in their own browser context via its \verb|patchWorkers()| API. The implementation is very complex and still @@ -1323,7 +1322,9 @@ and prevents web pages from misusing the browser as a proxy to access the local and computer. We solved issues with reliable environment modifications that stem from insufficient webextension APIs that open many loopholes that previous research -exploited~\cite{PrimeProbe1JS0}. In addition to \jshelter{}, we introduced +exploited~\cite{PrimeProbe1JS0}. Nevertheless, at the time of the writing of +this paper, \jshelter{} does not allow to use Web Workers, which breaks some +pages. Besides \jshelter{}, we introduced \NSCL{}. Both \noscript{} and \jshelter{} include \NSCL{}. Moreover, \NSCL{} is available for other privacy- and security-related webextensions.