>If security really mattered, every OS would run applications in a proper sandbox,
these OSes were designed decades ago, before we really had a good grasp on security. there were other significant concerns as well, such as performance
also, modern OS toolkits, such as on macos and windows 11, are moving towards a permission and API model that will allow sandboxing. In fact, macos is moving quite quickly towards this.
And lastly, there is a widely deployed OS that runs all applications in a proper sandbox: chromeos
I think it's understood at this point by everyone in the industry that sandboxing is the future, but it's taking a while to get there.
these OSes were designed decades ago, before we really had a good grasp on security. there were other significant concerns as well, such as performance
also, modern OS toolkits, such as on macos and windows 11, are moving towards a permission and API model that will allow sandboxing. In fact, macos is moving quite quickly towards this.
And lastly, there is a widely deployed OS that runs all applications in a proper sandbox: chromeos
I think it's understood at this point by everyone in the industry that sandboxing is the future, but it's taking a while to get there.