Security/B2G/2013 4 17

From MozillaWiki
< Security‎ | B2G
Jump to: navigation, search

FirefoxOS Security Team Meeting

1pm PST, B2G Vidyo room Prior notes are here:


webrtc - webnfc landing

   Based on Paul's Google Doc
   Don't copy&paste from Google Docs to MDN. Use text export and then re-format, else: hell.

Current/upcoming Reviews

Goal Status Updates

  • FirefoxOS related security reviews

- webnfc - webrtc - working on Q2 plan list - kitchensink app - introduce secure pattern

  • Develop and land tests for security features

- still working on tests -- freddy updated paul's allperms app in late Q1: (audio permissions missing?) - API being updated -- - FOR FUTURE REVIEWS: ensure remoting is in place - ensure ipdl - for js APIs use ppmm & cpmm -

  • Bug Bounty defined and ready to launch

- No update

  • Create Firefox OS Security Feature Tracking & Prioritization


  • Compile Firefox OS issue register

- no update

  • Continue to document Firefox OS Security
  • Document Update schedule & incident response procedure
  • Firefox OS Sandboxing