我如何确定内存被覆盖 - Javascript [英] How can I be sure memory is being overwritten - Javascript

问题描述

在将敏感信息加载到内存中时，我想确保之后将其安全删除.我正在开发一个 Javascript 网络应用程序，我想确保我的变量在值更改时被安全地覆盖.是简单地重新分配足以执行此操作的值，还是需要做一些额外的工作才能覆盖内存中的值.

When loading sensitive information into memory I want to make sure it is securely erased afterwards. I am working on a Javascript web app, and I want to make sure that my variables are securely overwritten when the value changes. Is simply reassigning the value enough to do this or is there something extra that needs to be done in order to overwrite the values in memory.

或者这是一个将永远导致我的应用程序安全问题的无望原因?

Or is this a hopeless cause that will forever cause security issues in my application?

我认为这会因浏览器而异.所有主流浏览器都会防止其他进程读取浏览器内存吗?

I assume this is something that will vary by browser. Do all the major browsers guard against other processes reading the browser memory?

推荐答案

这取决于您需要的安全级别.如果您的意思是将来在同一页面上运行的 Javascript 程序无法访问它，是的，您所要做的就是重新分配指向它的变量.如果您的意思是安全到计算机的硬件级分析无法找到信息，那么 Javascript 不是您想要的语言.

It depends on the level of security you need. If you mean it is inaccessible to future Javascript programs running on the same page, yes, all you have to do is reassign the variables pointing to it. If you mean, so secure that a hardware-level analysis of the computer won't find the info, Javascript isn't the language you want.

这篇关于我如何确定内存被覆盖 - Javascript的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！