Mozilla
In Firefox 95 launched today, Mozilla introduced a new sandbox technology RLBox developed in cooperation with the University of Texas and the University of California, San Diego, to further enhance the security of the browser. Although all current mainstream browsers rely on sandboxes to protect users from intrusion, many malicious codes have evolved to the point where they can exploit vulnerabilities to bypass this layer of protection. With the blessing of RLBox, third-party libraries will be converted to run in the WebAssembly sandbox. It is separated from the memory of Firefox and occupies very little resources, so it can also play a role in sandbox protection for browser core components (such as Graphite font rendering engine, Ogg multimedia module, etc.).
According to Mozilla, if RLBox can perform as expected, then “Firefox will not be threatened even if there are zero-day vulnerabilities in key components.” However, this technology cannot cover those components that rely on shared memory. Mozilla also called on the issuer to add RLBox technology to its own software to strengthen the defense of the entire ecosystem.