WebGL Makes Users Unsafe, Says Microsoft

Many people are aware that Microsoft isn't part of the Khronos consortium that oversees development of WebGL technology and includes companies such as AMD, Apple, ARM, Intel, Nokia, Nvidia, Oracle, Samsung and Sony. They may not be aware, however, that now Microsoft is proclaiming that WebGL is insecure and opens users up to DDOS attacks.

Microsoft has stated that WebGL relies too much on third parties to facilitate the secure viewing of a website. They said that they had looked into WebGL previously and found that it "would have difficulty passing Microsoft's Security Development Lifecycle requirements" and that "the large attack surface exposed by WebGL remains a concern." The company said that it will not endorse WebGL "from a security perspective."

Many people are aware that Microsoft isn't part of the Khronos consortium that oversees development of WebGL technology and includes companies such as AMD, Apple, ARM, Intel, Nokia, Nvidia, Oracle, Samsung and Sony. They may not be aware, however, that now Microsoft is proclaiming that WebGL is insecure and opens users up to DDOS attacks.

View Article



Comments

  • There are no comments yet. Be the first to comment!

Leave a Comment
  • Your email address will not be published. All fields are required.

Top White Papers and Webcasts

  • Microsoft® Office 365 is a top choice for enterprises that want a cloud–based suite of productivity collaboration applications. With Office 365, you get access to Microsoft™ Office solutions practically anytime, anywhere, on virtually any device. It's a great option for current Microsoft users who can now build on their experience with Microsoft™ solutions while enjoying the flexibility of a cloud-based delivery. But even organizations with no previous investment in Microsoft will find that …

  • Live Event Date: March 23, 2017 @ 2:00 p.m. ET / 11:00 a.m. PT As you adopt the use of cloud services, whether in public/IaaS, SaaS or hybrid environments, the attack surface expands and, if breached, the costs increase exponentially. This session is designed to help IT and security leaders understand and address the unique challenges that enterprises typically face when they deploy their applications in the public cloud. It summarize the areas that the public cloud vendors typically take care of and …

Most Popular Programming Stories

More for Developers

RSS Feeds

Thanks for your registration, follow us on our social networks to keep up-to-date