Hardening Brave further - Question

FlipSid · January 9, 2024, 5:21pm

Hello
I’ve been looking around in the flags of brave and reading a few articles. So as per DivestOS, and general consensus on the web, Chromium Browsers have a strong security feature which is called
Per-site process isolation:
“-is a powerful security feature that seeks to limit exposure of a malicious website/script abusing a security vulnerability.”
So far so good. Not new. But in the flags I went and activated Strict Site Isolation and Strict Origin Isolation.
Idea came from here:

Basically:
Site Isolation mode: Site Per Process, Strict Origin Isolation, (new) Password Sites, Logged-in Sites.(default)
The question that remains is:
Benefits of strict origin isolation is described here:

?
Having a hard time understanding the quote from chrome://process-internals:
**“Experimental security mode that strengthens the site isolation policy. Controls whether site isolation should use origins instead of scheme and eTLD+1. **
– Mac, Windows, Linux, ChromeOS, Android, Fuchsia, Lacros”

exaCORE · January 9, 2024, 7:53pm

This is true, but just note that on desktop OSes, Firefox has had this feature for a while too.

FlipSid · January 9, 2024, 7:58pm

@exaCORE
Extra read on Fission, Firefox, Gecko, Webview, Chromium.
Just facts (as far as a noob like me can tell), still use Mull alongside Brave:
https://madaidans-insecurities.github.io/firefox-chromium.html

Topic		Replies	Views
Brave - Needs Site isolation activated? Questions browsers	1	547	October 22, 2023
Android Firefox trade off Privacy	13	1735	July 29, 2023
Is it good to use Vivaldi over Brave? Questions	5	722	August 22, 2023
Firefox on Android clarification Questions software , guide	2	978	October 7, 2022
V8 JIT JavaScript/Wasm engine can be disabled & configured on a per-site basis in Chromium 122 Privacy	14	1161	February 29, 2024

Hardening Brave further - Question

Related Topics