Isolated Web applications (IWAs) are defined as applications that, instead of being hosted on a live web server and downloaded via HTTPS, are packaged into bundles signed by their developers and distributed to users in a variety of ways including platform-specific installation formats such as APK, MSI, or DMG, raw stacks, through an operating system, browser or third-party “app store”, and installed using the enterprise system’s configuration management infrastructure.
IWAs can be very secure
Google’s effort in this aspect is probably based on the fact that IWAs are relatively safe as they limit the interaction and sharing of data between different applications and systems. The benefits of using a standalone web application include security, controlled access and permissions, reduced dependency risks, and protection against cross-platform attacks.
Post this update, IWAs with permission to use the “Unrestricted USB” feature will be able to access USB devices that are normally “restricted” under the “vulnerable devices” list. The feature will likely allow customizing the types of USB devices that are accessible even if “unrestricted USB” is enabled.
Source link