WebAPI/Security/SMS: Difference between revisions

Jump to navigation Jump to search

WebAPI/Security/SMS (view source)

Revision as of 13:04, 24 September 2012

170 bytes removed ,  24 September 2012
no edit summary
No edit summary
No edit summary
Line 1: Line 1:
Name of API: Web SMS API
== Web SMS API ==
 
References: https://bugzilla.mozilla.org/show_bug.cgi?id=674725<br>
Discussion: https://groups.google.com/group/mozilla.dev.webapps/browse_thread/thread/58a66963732b09a0/9ae97f65a9e74c78
 
Brief purpose of API: Send and receive SMS messages
Brief purpose of API: Send and receive SMS messages


Line 14: Line 10:
Threat severity: critical per https://wiki.mozilla.org/Security_Severity_Ratings
Threat severity: critical per https://wiki.mozilla.org/Security_Severity_Ratings


== Regular web content (unauthenticated) ==
References: https://bugzilla.mozilla.org/show_bug.cgi?id=674725<br>
Use cases for unauthenticated code: App prompts user to send SMS
Discussion: https://groups.google.com/group/mozilla.dev.webapps/browse_thread/thread/58a66963732b09a0/9ae97f65a9e74c78


Authorization model for uninstalled web content: Explicit via web activities
{| border="1" class="wikitable"
! Type
! Use Cases
! Authorization Model
! Notes & Other Controls
|-
| Web Content || App prompts user to send SMS || No  direct access (access via web activities) ||
|-
| Installed Web Apps || App prompts user to send SMS || No  direct access (access via web activities) ||
|-
| Privileged Web Apps || App prompts user to send SMS * || No  direct access (access via web activities) ||
|-
| Certified Web Apps || SMS app || Implicit ||
|}


Authorization model for installed web content: Explicit via web activities
=== Notes ===


Potential mitigations:
Note that further integration for Web SMS access to privileged APIs is planned for the future. These may employ the following mitigating controls:
 
== Privileged (approved by app store) ==
Use cases for privileged code: Full-featured SMS app.  Read & send SMS.
 
Authorization model: Explicit via web activities (better integration to follow in the future)
 
Potential mitigations:  
*Set thresholds or warnings on premium numbers.   
*Set thresholds or warnings on premium numbers.   
*Only allow sending of SMS's to user-provided contacts.   
*Only allow sending of SMS's to user-provided contacts.   
*Show OS confirmation of message before sending.
*Show OS confirmation of message before sending.
== Certified (system-critical apps) ==
Use cases for certified code:  SMS app
Authorization model: Implicit
Potential mitigations: None beyond certification
==Notes==
Should trusted apps be able to register as handlers for SMS web activities/intents, or only certified apps?


__NOTOC__
__NOTOC__
Ptheriault
canmove, Confirmed users
1,220

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/472984"

Navigation menu