Some researchers say that WebGL, a universal three-dimensional Web graphics standard that has been widely anticipated by Web programmers, could lead to significant security concerns. Although WebGL is currently built into Google Chrome and Firefox, Context Information Security warns that it contains a major security flaw that would allow a Web site to capture a screenshot of a Firefox user's computer. As a result, the company recommends that users and system administrators disable WebGL. Context's recommendations were recently supported by Microsoft.
"We believe that WebGL will likely become an ongoing source of hard-to-fix vulnerabilities," Microsoft said in a recent blog post. "In its current form, WebGL is not a technology Microsoft can endorse from a security perspective." The security risks mean that game developers will not have an easy, unified way to handle Web-based software. WebGL's current format could lead to attacks that result in remote compromise, according to Microsoft.
Despite the noted vulnerabilities, WebGL still has its share of supporters, including Apple, Google, and smartphone developers.
View Full Article
Abstracts Copyright © 2011 Information Inc., Bethesda, Maryland, USA