27 June 2008 @ 7:13What Snow Leopard needs
Dino Dai Zovi has a fairly comprehensive list of the security-related features he hopes Snow Leopard will implement.
- Real ASLR (address space layout randomization).
- Full use of hardware-enforced Non-eXecutable memory (NX).
- Default 64-bit native execution for any security-sensitive processes.
- Sandbox policies for Safari, Mail.app, and third-party applications.
- Mandatory code signing for any kernel extensions.