TechWeb

Apple Safari 5.01 Fixes Security, Adds Extensions

Jul 28, 2010 (10:07 AM EDT)

Read the Original Article at http://www.informationweek.com/news/showArticle.jhtml?articleID=226300177





Slideshow: 10 Killer Mac Applications
(click for larger image and for full photo gallery)
In an effort to make Safari more secure and more competitive with other modern Web browsers, Apple on Wednesday released Safari 5.01.

Safari 5.01 addresses 15 security vulnerabilities, one of which -- an AutoFill information disclosure flaw -- was publicly disclosed last week.

But the primary purpose of the updated software is to enable Safari Extensions, a new framework for browser extensions based on HTML5, CSS3, and JavaScript.

As with Chrome, Firefox, Internet Explorer, and Opera, developers have long been able to write extensions or plugins for Safari. But prior to Safari 5.0, the process was not easy. It required some degree of proficiency in Cocoa and Objective-C.

That changed with the introduction of Safari 5.0 in June at Apple's developer conference. Apple developers can now sign up to create Safari Extensions using HTML5, CSS3, and JavaScript and submit them to Apple for inclusion in Apple's Safari Extensions Gallery.

Unlike iOS apps submitted to the Apple's iTunes App Store, Safari Extensions do not have to survive a formal content-based review process.

That's not to say Apple will necessarily include every Safari Extension submitted -- the developer agreement says Apple has complete discretion over inclusion. But the Safari Extension Gallery only points Safari users to the Web sites of extension developers. Apple is unlikely to be as concerned about external content as it is about content on its servers.

The Safari developer agreement only stipulates that Safari Extensions should not be malicious, violate the law, override Apple interface elements or utilize open-source software in a way that would impose a licensing restriction on Apple.




"We're thrilled to see so many leading developers creating great extensions and think our users are going to love being able to customize Safari," said Brian Croll, Apple's VP of OS X product marketing, in a statement.

It's too soon to tell whether Croll's acknowledgement that user customization is desirable represents a shift away from the autocratic design tradition that has served Apple well over the years.

But at the very least, Apple is trying to make Safari more competitive with Chrome and Firefox, which have built a loyal base of users in part through their extensibility.

Safari 5 also looks a lot like an attempt to undermine Google's ad-supported business model, which happens to threaten Apple's revenue from software and subscription sales.

With Safari 5, Apple has become the highest profile promoter of ad blocking among its peers. On the Safari 5 Web page, Apple notes that the Safari Reader button can make "articles instantly appear in one continuous, ad-free view. So you can read without distractions."

Apple also appears to be eager to provide instructions to developers about how they can create Safari Extensions that block content. One of the prominently featured sample code projects in Apple's Safari Dev Center is the Blocker Safari Extension.

Apple is also making a point of featuring Microsoft's Bing extension in its press release and in its Extension Gallery. The absence of Google, the most popular search engine in most of the world, is conspicuous.

Apple's iAd service for mobile advertising on the iPhone initially appeared to limit the ability of Google's AdMob to serve iPhone ads, but the inquires of government regulators appear to have forced Apple to back away from enforcing rules that would have hindered competitors.

Safari Extensions do not work on the mobile version of Safari, found on the iPhone, iPod, and iPad. It remains to be seen how eager Apple is to allow users to customize the iOS device experience by blocking distracting iAds or Web ads.