| |
| |
| |
| |
Flash Player 7 contains several features that help you ensure the security of your Flash documents.
Buffer overrun protection prevents the intentional misuse of external files in a Flash document to overwrite a user's memory or insert destructive code such as a virus. This prevents a Flash document from reading or writing data outside the document's designated memory space on a user's system. Buffer overrun protection is enabled automatically.
Flash Player 7 enforces a stricter security model than previous versions of Flash Player do. Between Flash Player 6 and Flash Player 7, there were two primary changes in the security model:
Exact domain matching Flash Player 6 lets SWF files from similar domains (for example, www.macromedia.com and store.macromedia.com) communicate freely with each other and with other documents. In Flash Player 7, the domain of the data to be accessed must match the data provider's domain exactly in order for the domains to communicate.
HTTPS/HTTP restriction A SWF file that loads using nonsecure (non-HTTPS) protocols cannot access content loaded using a secure (HTTPS) protocol, even when both are in exactly the same domain.
For more information about ensuring that Flash content performs as expected with the new security model, see Flash Player security features.
| |
| |
| |
| |