SECURITY

Process isolation

Trusted vs untrusted code

Sandbox strategy

Permission boundaries