In the spirit of the famous articlePDF by Edsger Dijkstra, Microsoft says, in a piece entitled “WebGL considered harmful”, that the 3D technology is not secure enough for its products. The blog post lists three reasons for this conclusion: first, browser support for WebGL gives web applications direct access to hardware; second, there could be security flaws in third-party software (such as in graphics drivers); and finally, Microsoft says that operating systems do not currently offer any protection against denial-of-service attacks on graphics cards. “We believe that WebGL will likely become an ongoing source of hard-to-fix vulnerabilities. In its current form, WebGL is not a technology Microsoft can endorse from a security perspective.” However, Microsoft itself plans to access graphics card hardware directly in the upcoming Silverlight 5. In other words, the criticism of WebGL may stem not only from security concerns, but also from marketing interests.
Uncategorized June 20th 2011