"Just what is in store for Internet Explorer 9 from a security perspective remains unknown. But in light of Microsoft’s announcement, some security pros shared their thoughts with eWEEK about what they would like to see in the upcoming version of the Web browser.
For Jeremiah Grossman, CTO of WhiteHat Security, the first item on the list is for Microsoft to implement content security policy, like Mozilla is doing with Firefox. Second, ensuring publicly available Web sites cannot initiate RFC 1918 connections by default. Third, he said he would like to see Microsoft offer more centralized user control over localStore, sessionStorage, Flash cookies and “all those other things like browser cookies hidden around the place.”
The final item on his wish list was a solution to clickjacking and DNS-pinning – something he admits no one really has." – Content courtesy of A Security Wish List for Microsoft Internet Explorer 9