Labs/Weave/Sync Client Security Review: Difference between revisions

Jump to navigation Jump to search

Labs/Weave/Sync Client Security Review (view source)

Revision as of 00:17, 11 February 2010

84 bytes added ,  11 February 2010
→‎Review comments
Line 115: Line 115:
* '''Action:''' NIST is encouraging people get away from 2k keys by the end of 2010. -- Not an issue.
* '''Action:''' NIST is encouraging people get away from 2k keys by the end of 2010. -- Not an issue.
* Think of ways we can detect a hijack (someone could write a malicious add-on that starts directing users to their servers).
* Think of ways we can detect a hijack (someone could write a malicious add-on that starts directing users to their servers).
* '''Action:''' Make sure the code where we generate entropy is clearly marked off.
Rags
505

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/201718"

Navigation menu