Hacker News new | past | comments | ask | show | jobs | submit login

"I agree with Microsoft’s assessment that WebGL is a severe security risk. The gfx driver culture is not the culture of security." -- John Carmack

And Carmack is not precisely known as a MS cheerleader.




Carmack is right - there are security risks with allowing web content to run GPU shaders.

But Microsoft is inconsistent since it allows Silverlight content to run GPU shaders - proving that while there are risks, they are manageable, especially with Microsoft's deep security measures in recent Windows versions.


The issues with drivers can be and are being mitigated. The question is will Microsoft support WebGL once drivers are secure? I still doubt it, for the business reasons.


"Mitigated" is not the same as solved.

Graphics drivers are inherently not designed to be exposed like that to hostile content.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: