Confirmed users
717
edits
WebAPI/Security/Wifi: Difference between revisions
Had the wrong page in here (bluetooth)
No edit summary |
(Had the wrong page in here (bluetooth)) |
||
| Line 1: | Line 1: | ||
Name of API: Wifi API | |||
Reference: | Reference: http://groups.google.com/group/mozilla.dev.webapi/browse_thread/thread/ed980c42261c5f4a?pli=1 | ||
Brief purpose of API: | Brief purpose of API: Read wifi network information (read-only). All network changes should go through settings API. | ||
General Use Cases: None | |||
Inherent threats: Privacy(identify user, geolocation, based on wifi characteristics) | |||
Threat severity: Moderate | |||
Threat severity: | |||
== Regular web content (unauthenticated) == | == Regular web content (unauthenticated) == | ||
*Use cases: None | *Use cases for unauthenticated code:None | ||
*Authorization model for normal content: | *Authorization model for normal content: | ||
*Authorization model for installed content: | *Authorization model for installed content: | ||
*Potential mitigations: | *Potential mitigations: | ||
== Trusted (authenticated by publisher) == | == Trusted (authenticated by publisher) == | ||
*Use cases: | *Use cases for authenticated code: | ||
* | ** Wifi sniffer app | ||
*Potential mitigations: | *Use cases for trusted code: Explicit | ||
*Potential mitigations: | |||
== Certified (vouched for by trusted 3rd party) == | == Certified (vouched for by trusted 3rd party) == | ||
*Use cases: | *Use cases for certified code: Wifi Manager | ||
*Authorization model: Implicit | *Authorization model: Implicit | ||
*Potential mitigations: | *Potential mitigations: | ||