SecurityEngineering: Difference between revisions

Jump to navigation Jump to search

SecurityEngineering (view source)

Revision as of 04:05, 18 March 2015

322 bytes removed ,  18 March 2015
→‎Major Efforts: add the content security projects
m (remove whitespace)
(→‎Major Efforts: add the content security projects)
Line 24: Line 24:
{|class="wikitable"
{|class="wikitable"
|  
|  
| Tracking Protection
| [[Polaris#Tracking_protection|Tracking Protection]]
| Lead: [[User:Mmc|Monica Chew]]
|-
| [[Phishing_Protection|Safe Browsing]] and [[Security/Features/Application_Reputation|Application Reputation]]
| Lead: [[User:Mmc|Monica Chew]]
| Lead: [[User:Mmc|Monica Chew]]
| (roadmap coming)
|-
|-
| [[Image:Foxinabox.png|75px|alt=The fox cannot escape the box.]]
| [[Image:Foxinabox.png|75px|alt=The fox cannot escape the box.]]
| [[Security/Sandbox|Sandboxing]]
| [[Security/Sandbox|Sandboxing]]
| Leads: kang/tabraldes (non-tech: Sid Stamm)
| Leads: Bob Owen
|  
|-
| [[Security/Features/Mixed_Content_Blocker|Mixed Content Blocking]]
| Lead: Tanvi Vyas
|-
|-
|  
| [[Security/CSP]]
| Secure Communications
| Lead: Christoph Kerschbaumer
| Lead: [[User:Bsmith|Brian Smith]]
| We want to make sure you get what you ask for, so we're hardening our SSL/TLS stack (and [[CA]] program), rolling out [https://blog.mozilla.org/tanvi/2013/04/10/mixed-content-blocking-enabled-in-firefox-23/ Mixed Content blocking], and developing a [http://www.w3.org/2012/webcrypto/ Web Crypto API] to help sites lock down messaging.
|-
|-
| [[Image:Blushingfox.png|75px|alt=autoprivatemode.]]
| [[Security/SRI|Sub-resource Integrity]]
| [[Security/Contextual_Identity_Project|Contextual Identity]]
| Lead: [[User:Fmarier|Francois Marier]]
| Lead: [[User:Mmc|Monica Chew]]
|-
| Many people have multiple "me"s depending on their activity.  We want to understand how people think about their identities and help them manage 'em.  Current projects include: [https://github.com/mozilla/blushproof/wiki Blushproof].
| [[CloudServices/Password_Manager|Password Manager]]
| Lead: Tanvi Vyas
|-
| Add-on signing
| Lead: Daniel Veditz
|}
|}


Some recent highlights:
Other projects which are on the back burner:
* [https://blog.mozilla.org/security/2013/01/29/putting-users-in-control-of-plugins/ Click to Play Plugins] (See {{bug|738698}})
 
* [https://blog.mozilla.org/security/2013/02/15/announcing-version-2-1-of-mozilla-ca-certificate-policy/ CA Certificate Policy version 2.1]
* [[Security/Contextual_Identity_Project|Contextual Identity]]
* <code>crypto.getRandomValues</code> (See {{bug|440046}})
* [[Security/Foreign_Certificate_Warning|Foreign Certificate Warning]]
* [https://blog.mozilla.org/tanvi/2013/04/10/mixed-content-blocking-enabled-in-firefox-23/ Mixed content blocking] (See {{bug|815321}})
* [[CloudServices/Password_Manager/Master_Password|Master Password]] in the Password Manager
* [[Security/Contextual_Identity_Project/Containers|Containers]], [[Security/Contextual_Identity_Project/Private_Session|private sessions]] and [[Security/Contextual_Identity_Project/User_Profiles|user profiles]]


==How to participate==
==How to participate==
Fmarier
Confirmed users
908

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/1062627"

Navigation menu