M ozilla is introducing a new sandboxing tool known as RLBox (read more about it at https://bit.ly/lxf285rlbox) to Firefox 95. Developed with researchers from the University of California San Diego and the University of Texas, RLBox is aimed at making subcomponent isolation easier, which in turn will make using the web browser more secure.
Based on WebAssembly, any potential buggy or compromised code can be located and isolated. This could mean that even zero-day vulnerabilities will cause no issues for Firefox. Unlike regular sandboxes used by browsers, RLBox compiles the code into WebAssembly, then compiles that into native code. This prevents the code from accessing other parts of the program, and it can’t access memory outside of what’s been allocated, which should prevent the code from doing any damage.