— Google Caja is based on this videos, which is basically a sandboxed DOM
— In this OS there will be 2 isolated contiguous address spaces, one for supervisor mode and one for user mode
Message permanent page
— The MMU would then check the mode, then translate memory access to protect supervisor code and data from the user side
Message permanent page
— Supervisor can reach both user and supervisor addresses while user can only access user addresses
— This implemented in JS?
— It's like the ghetto version of psuedo-protected memory, before we really had it