Does JS Binding poses a security problem?

Anyone here knows if having JS Bindings incorporated into Alethzero poses any security issues? I mean allowing a wallet to be exposed to some webpage means we are exposing the wallet to possible malicious attacks. Anyone can shed some light into this?


  • JasperJasper Eindhoven, the NetherlandsMember Posts: 514 ✭✭✭
    Yeah this is totally an important area. Even without the issue, i would hate to see javascript call a million servers like in the regular web. This 1) is be too tracable. 2) The damned javascript is obtained 1ms before being run, so far for the possibility of review.

    What also would help is javascript libraries, something that browsers like Firefox and Chrome are blame-ably not picking up.

    Using magnet links could help, because attackers dont necessarily know where to spy for it being called for, and the checksum helps prevent the file changing. (if the checksum is on the blockchain, an attacker cannot change it easily.)
Sign In or Register to comment.