1) Explain in your words what privilege separation is.



2) Why is it not a good idea to run an entire web browser into one protection domain?



3) Why does the Chromium browser's architecture protect against attacks such as file theft described on page 3?



4) Why doesn't the Chromium browser's architecture protect against phishing?