Security/Reviews/IdentityBox: Difference between revisions
Jump to navigation
Jump to search
Full Query
Full Query
No edit summary |
No edit summary |
||
| Line 1: | Line 1: | ||
{{SecReviewInfo | {{SecReviewInfo | ||
|SecReview name=New Idenity Box Design | |SecReview name=New Idenity Box Design | ||
|SecReview target=< | |SecReview target=<bugzilla> | ||
{ | |||
< | "id":"742419,612253" | ||
} | |||
</bugzilla> | |||
}} | }} | ||
{{SecReview | {{SecReview | ||
| Line 37: | Line 38: | ||
<td>A blog post about how moving the display of favicon.ico from the area supplying trusted information from the browser, to the tab, protects users.</td> | <td>A blog post about how moving the display of favicon.ico from the area supplying trusted information from the browser, to the tab, protects users.</td> | ||
<td>during Beta</td> | <td>during Beta</td> | ||
<td>{{ | <td>{{done|done}} </td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
| Line 44: | Line 45: | ||
<td>Change the icon for mixed content </td> | <td>Change the icon for mixed content </td> | ||
<td>by Beta for FF 14 </td> | <td>by Beta for FF 14 </td> | ||
<td>{{ | <td>{{done|done}} </td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
| Line 51: | Line 52: | ||
<td>Don't include https:// in the mixed content case </td> | <td>Don't include https:// in the mixed content case </td> | ||
<td>by FF15, or sooner if possible. </td> | <td>by FF15, or sooner if possible. </td> | ||
<td>{{ | <td>{{done|done}} </td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
| Line 58: | Line 59: | ||
<td>Make the https:// black (to match the domain color) in the https non-ev case </td> | <td>Make the https:// black (to match the domain color) in the https non-ev case </td> | ||
<td>by FF15 </td> | <td>by FF15 </td> | ||
<td>{{ | <td>{{done|done}} </td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
| Line 65: | Line 66: | ||
<td>Make the https: green in the https ev case</td> | <td>Make the https: green in the https ev case</td> | ||
<td>by FF15 (not a security requirement) </td> | <td>by FF15 (not a security requirement) </td> | ||
<td>{{ | <td>{{done|done}} </td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
| Line 72: | Line 73: | ||
<td>Make the lock icon darker for the non-ev case </td> | <td>Make the lock icon darker for the non-ev case </td> | ||
<td>by FF15 </td> | <td>by FF15 </td> | ||
<td | <td{{done|done}} </td> | ||
</tr> | </tr> | ||
</table> | </table> | ||
<bugzilla> | |||
{ | |||
"id":"747093,747090,747088,747087,747085,747083" | |||
} | |||
</bugzilla> | |||
}} | }} | ||
Revision as of 23:43, 13 June 2012
Please use "Edit with form" above to edit this page.
Item Reviewed
| New Idenity Box Design | |||||||||||||
| Target |
2 Total; 0 Open (0%); 1 Resolved (50%); 1 Verified (50%); |
||||||||||||
{{#set:SecReview name=New Idenity Box Design
|SecReview target=
| ID | Summary | Priority | Status |
|---|---|---|---|
| 612253 | Need a shortcut key to focus the input line in web console | P2 | VERIFIED |
| 742419 | Implement new identity block design (lighter weight with a generic icon) | -- | RESOLVED |
2 Total; 0 Open (0%); 1 Resolved (50%); 1 Verified (50%);
}}
Introduce the Feature
Goal of Feature, what is trying to be achieved (problem solved, use cases, etc)
- We will remove the favicon from the Firefox address bar and replace it with a generic icon in http and mixed content scenarios. Use a grey lock in https, and a green lock in https+ev. The verified domain will be hidden in https. The verified identity will be visible in https+ev.
What solutions/approaches were considered other than the proposed solution?
- current state
Why was this solution chosen?
- to make the state of pages clearer to users
Any security threats already considered in the design and why?
`
Threat Brainstorming
- "Your connection to this website has been encrypted to prevent eavesdropping."
- That statement makes me very uncomfortable, as encryption doesn't prevent eavesdropping: it attempts to protect a combination of confidentiality and integrity, depending on the algorithms chosen. I think this is an important distinction, not a pedantic argument, as it can lead users to assume a false level of security. I'm not sure what the right words to use are - a different question - but I believe that these are not it. If we change this, it's something we'll want to do a blog post explaining. - adamm
- Out of scope for this review, the Larry dialog is a separate effort.
{{#set: SecReview feature goal=* We will remove the favicon from the Firefox address bar and replace it with a generic icon in http and mixed content scenarios. Use a grey lock in https, and a green lock in https+ev. The verified domain will be hidden in https. The verified identity will be visible in https+ev. |SecReview alt solutions=* current state |SecReview solution chosen=* to make the state of pages clearer to users |SecReview threats considered=' |SecReview threat brainstorming=* "Your connection to this website has been encrypted to prevent eavesdropping."
- That statement makes me very uncomfortable, as encryption doesn't prevent eavesdropping: it attempts to protect a combination of confidentiality and integrity, depending on the algorithms chosen. I think this is an important distinction, not a pedantic argument, as it can lead users to assume a false level of security. I'm not sure what the right words to use are - a different question - but I believe that these are not it. If we change this, it's something we'll want to do a blog post explaining. - adamm
- Out of scope for this review, the Larry dialog is a separate effort.
}}
Action Items
| Action Item Status | In Progress | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Release Target | ` | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Action Items | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
<td[DONE] done
6 Total; 0 Open (0%); 6 Resolved (100%); 0 Verified (0%); |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{{#set:|SecReview action item status=In Progress
|Feature version=`
|SecReview action items=
<td[DONE] done| Who | bug | Action | By When | Completed date
[NEW] new [DONE] Done [MISSED] Miss |
| UX | bug 747093 | A blog post about how moving the display of favicon.ico from the area supplying trusted information from the browser, to the tab, protects users. | during Beta | [DONE] done |
| jaws | bug 747090 | Change the icon for mixed content | by Beta for FF 14 | [DONE] done |
| jaws | bug 747088 | Don't include https:// in the mixed content case | by FF15, or sooner if possible. | [DONE] done |
| jaws | bug 747087 | Make the https:// black (to match the domain color) in the https non-ev case | by FF15 | [DONE] done |
| jaws | bug 747085 | Make the https: green in the https ev case | by FF15 (not a security requirement) | [DONE] done |
| jaws | bug 747083 | Make the lock icon darker for the non-ev case | by FF15 |
| ID | Summary | Priority | Status |
|---|---|---|---|
| 747083 | Update the identity icons to have a darker lock icon for HTTPS and greener lock icon for HTTPS+EV. | -- | RESOLVED |
| 747085 | Make the https:// green in the https ev case | -- | RESOLVED |
| 747087 | Make the https:// black (to match the domain color) in the https non-ev case | -- | RESOLVED |
| 747088 | Don't include https:// in the location bar in the mixed content case | -- | RESOLVED |
| 747090 | Change the icon for mixed content | -- | RESOLVED |
| 747093 | Favicon blog post | -- | RESOLVED |
6 Total; 0 Open (0%); 6 Resolved (100%); 0 Verified (0%);
}}