Chrome Markt - HackMD

# Chrome Markt ## Описание цели DappletBridge is the connector to the web of augmentations called DappletWeb. It applies new functionality elements called Dapplets to existing websites. Dapplets are small and restricted augmenting applications developed and audited by the DappletWeb community. It is our goal to make the DappletWeb both open and secure as much as possible. We achieve it by special architecture as well as technical and organizational measures. Please see explanations in "Using Remote Code" sections for more details. ## Обоснование (Tabs) Opening the overlay (sidebar) and communication between them and the background. ## Обоснование (Storage) Store user settings like list of activated dapplets, their configs, addresses of trusted users, registries, developments servers and another settings which available in the Settings tab of the popup. ## Обоснование (ContextMenus) Menu items for suspending of the extension ## Обоснование (Notifications) Notifications about a result of Ethereum-transactions execution. ## Обоснование (Разрешение на доступ к хостам) Dapplets require read and write permissions to any website to augment it. ## Using Remote Code DappletWeb is the web of augmentations maintained by community. That means all Modules (Dapplets and WebsiteAdapters) are developed and audited independently by community members. The DappletBridge extension dynamically loads, verifies and executes Modules. Additionally it provides built-in core services like accessing overlays or connecting to crypto wallets. Comparing to UserScripts, Dapplets makes addional technical and organizational measures to provide better security: * An augmenting part of the Dapplet very small and clean (usually ~100 lines of code). Dapplet has no direct access to the DOM. This architecture makes the reliable audit of Dapplets easier. * Most standard functionality is built-in. Dapplets and Website Adapters consists mostly of configurations, not of code. It makes hard get any malicious code through audit. * Any module gets audited. An audit status is cryptographically signed. * All Modules are cryptographically hashed and signed. * Module Registry and Storage is decentralized and hard to tampered with.