Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Endpoint Security

Safari 5 Adds Security Features and Improved Developer Tools

With the excitement surrounding Apple’s iPhone 4 at its World Wide Developer Conference (WWDC) yesterday, Apple decided not talk about the latest version of its Web browser during the Keynote,Safari 5 Security instead making the announcement and releasing the product later in the day.

With the excitement surrounding Apple’s iPhone 4 at its World Wide Developer Conference (WWDC) yesterday, Apple decided not talk about the latest version of its Web browser during the Keynote,Safari 5 Security instead making the announcement and releasing the product later in the day. In addition to expanded HTML5 support, an upgraded “Nitro JavaScript Engine” and other features, Safari 5 adds some enhanced performance and security features useful to both developers and end users.

With the release of Safari 5, Apple will provide Safari developers with tools to create a digital certificate for extensions. Safari extensions must be signed with an Apple-provided digital certificate. The certificate protects the extensions from tampering and ensures that updates come only from the developer that owns it.

In addition, Safari extensions include built-in defenses like sandboxing which safeguards extensions from being used to access information on a user’s system. Built with standard web technologies, Safari extensions execute right in the browser, reducing the chance of an extension causing crashes or instability.

While not Safari 5 Web  Inspectorexactly a pure “security” feature, an improved Web Inspector lets users view how Safari interacts with websites. Loading, scripting, and rendering timelines show how and when Safari parses HTML, executes JavaScript, and performs other operations with a web application. Additional improvements to the Web Inspector make it easy for developers to pinpoint areas for optimization and can be a useful tool for security researchers and QA teams. 

In addition to new security features and functions, Apple also fixed other vulnerabilities including CSS history hacks, potential HTTPS to HTTPS data leaks and more. A full detail of the security content for Safari 5 is available here.

Safari 5 is available for download at: http://www.apple.com/safari/download/

Written By

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.

Register

Learn how integrating BAS and Automated Penetration Testing empowers security teams to quickly identify and validate threats, enabling prompt response and remediation.

Register

People on the Move

PAM provider Keeper Security has appointed Shane Barney as its Chief Information Security Officer.

SpecterOps has appointed Tim Bender as CFO, Pat Sheridan as CRO, and Bryce Hein as CMO.

CISA has officially announced the appointment of Madhu Gottumukkala as its new deputy director.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.