Yes, but they all have what ek calls "swiss cheese security models," ie they are vulnerable to sufficiently sophisticated attacks, which is not ideal to say the least.

We are investigating them, but doing this kind of thing breaks THE fundamental assumption of browser tech: the domain owner and the service available at the domain are one and the same (or at least fully trust each other).