Confirmed users
729
edits
Security/ReviewTemplate: Difference between revisions
Split out "Privacy"
(Split out "Privacy") |
|||
| Line 25: | Line 25: | ||
Please be prepared to discuss the following topics as they relate to your feature / project. To the degree you can answer some of these questions prior to the review it will speed up the process, but its not a requirement. | Please be prepared to discuss the following topics as they relate to your feature / project. To the degree you can answer some of these questions prior to the review it will speed up the process, but its not a requirement. | ||
== Security | == Security == | ||
Provide a thorough description of the security assumptions, capabilities and any potential risks (possible attack points) being introduced by your project. | Provide a thorough description of the security assumptions, capabilities and any potential risks (possible attack points) being introduced by your project. | ||
* Is this feature a security feature? | * Is this feature a security feature? | ||
** If it is, what security issues is it intended to resolve? | ** If it is, what security issues is it intended to resolve? | ||
* Is system or subsystem security compromised in any way if your project's configuration files / prefs are corrupt or missing? | * Is system or subsystem security compromised in any way if your project's configuration files / prefs are corrupt or missing? | ||
* If any content or UI is displayed to the user, in what context is that content presented? Does it have chrome privileges, for example? | * If any content or UI is displayed to the user, in what context is that content presented? Does it have chrome privileges, for example? | ||
* Does the feature include any new cryptographic functions or other security-critical code? | * Does the feature include any new cryptographic functions or other security-critical code? | ||
** Has this code been reviewed and verified by someone familiar with the theory or principles behind it? | ** Has this code been reviewed and verified by someone familiar with the theory or principles behind it? | ||
== Privacy == | |||
* Does the feature expose information that could strengthen fingerprinting? | |||
* Does the feature cache or store data that could strengthen super-cookies? | |||
* How are transitions in/out of Private Browsing mode handled? | |||
* How is "Clear Recent History" handled? | |||
== Exported APIs == | == Exported APIs == | ||