Sign In

Communications of the ACM

ACM TechNews

Microsoft Declares Webgl 'harmful' to Security

View as: Print Mobile App Share:
WebGL logo


Some researchers say that WebGL, a universal three-dimensional Web graphics standard that has been widely anticipated by Web programmers, could lead to significant security concerns. Although WebGL is currently built into Google Chrome and Firefox, Context Information Security warns that it contains a major security flaw that would allow a Web site to capture a screenshot of a Firefox user's computer. As a result, the company recommends that users and system administrators disable WebGL. Context's recommendations were recently supported by Microsoft.

"We believe that WebGL will likely become an ongoing source of hard-to-fix vulnerabilities," Microsoft said in a recent blog post. "In its current form, WebGL is not a technology Microsoft can endorse from a security perspective." The security risks mean that game developers will not have an easy, unified way to handle Web-based software. WebGL's current format could lead to attacks that result in remote compromise, according to Microsoft.

Despite the noted vulnerabilities, WebGL still has its share of supporters, including Apple, Google, and smartphone developers.

From CNet
View Full Article


Abstracts Copyright © 2011 Information Inc., Bethesda, Maryland, USA


No entries found

Sign In for Full Access
» Forgot Password? » Create an ACM Web Account