SecurityEngineering/MeetingNotes/01-03-13

From MozillaWiki
< SecurityEngineering‎ | MeetingNotes
Revision as of 23:49, 9 January 2013 by Imelven (talk | contribs) (Created page with "= Q1 Goals = Code: * LAND application reputation (almost done) (mmc) * land libpkix on by default (requires resolving many dependencies, bsmith + camilo) ** todo: what is the imp...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

Q1 Goals

Code:

  • LAND application reputation (almost done) (mmc)
  • land libpkix on by default (requires resolving many dependencies, bsmith + camilo)
    • todo: what is the impact to the user ?
  • land mixed content UI v1 (tanvi)
    • mixed content protection turned on by default in Nightly
    • protects users from mixed content and gives them control
  • land crypto.getRandomValues (finally) [desktop & mobile] (ddahl)
    • real entropy in JS, key building block for JS crypto
    • This should include B2G (e10s) design + hacking implementation

Evangelism:

  • csp 1.0 evangelism (including with OWASP) and MDN repairs (sid + ian)
    • clears up our messaging around CSP and helps developers use it

Research:

  • CID stuff: design and deploy test pilot cookie survey (mmc)

Get-Together Planning

Retrieved from "https://wiki.mozilla.org/index.php?title=SecurityEngineering/MeetingNotes/01-03-13&oldid=498234"