Security: Difference between revisions

Jump to navigation Jump to search

Security (view source)

Revision as of 23:03, 12 March 2021

7 bytes added ,  12 March 2021
Update link to Guidelines
(Automated sync from https://github.com/mozilla/wikimo_content)
(Update link to Guidelines)
 
(13 intermediate revisions by 8 users not shown)
Line 17: Line 17:
=== Who are we? ===
=== Who are we? ===
Security at Mozilla is distributed among the following teams:
Security at Mozilla is distributed among the following teams:
* [[SecurityEngineering|Security Engineering]]: Development of Firefox & underlying platform security features.
* [[SecurityEngineering|Security Engineering]] makes users of Firefox safer on the Internet.
* [[Security/InfoSec|Enterprise Information Security]]: Defines and operates security controls across the organization.
* [[Security/FoxSec|Security Operations]] protects the product infrastructure and builds security services.
* [[Security/CloudSec|Cloud Services Security]]: Securing core Firefox services.
* Firefox Fuzzing finds vulnerabilities in Firefox.
* [[Security/InfoSec|Security Assurance]] leads incident response, product security strategy, and risk management.


=== Contacting Us ===
=== Contacting Us ===
Line 27: Line 28:
** dev-security@lists.mozilla.org: this is the best place to ask security questions that don't need to be private. You might also try searching this list for answers to your questions
** dev-security@lists.mozilla.org: this is the best place to ask security questions that don't need to be private. You might also try searching this list for answers to your questions
** You can also find us on a number of security related mailing lists including W3C WebAppSec
** You can also find us on a number of security related mailing lists including W3C WebAppSec
* Via Mozilla [[IRC]]
* Via the [https://matrix.to/#/!xSFwJMLGSLXLaSUrHr:mozilla.org?via=mozilla.org&via=matrix.org #security] channel on Mozilla's [[Matrix]] instance.
** #security - general security discussions
** #contentsecurity - browser security engineering, DOM, CSP, Origins, content blocking etc
** #infosec - general infosec discussions


'''Need a security review for Firefox feature/change? See [[Security/Testing]].'''


== Information for developers ==
== Information for developers ==
===Security Bug Processes ===
===Security Bug Processes ===
* [[Security/Firefox_security_bug_fixing|Guidelines for fixing a core-security bug in Firefox]]
* [[Security/Bug_Approval_Process|Approval for Landing Security Bugs]]
* [[Security/Bug_Approval_Process|Approval for Landing Security Bugs]]
* [[Security/Web_Bug_Rotation|Web Bug Verification Rotation]]
* [[Security/Web_Bug_Rotation|Web Bug Verification Rotation]]
 
* [[Security/Firefox/Security_Bug_Triage_Process|Security Bug Triage Process]]
===Request a Security or Privacy Review ===
* [[Security/Firefox/Security_Bug_Life_Cycle|Security Bug Life Cycle]]
* Complete the questions at the following page to provide the basic info to kickstart a security or privacy review
* We'll create and link the corresponding wiki page within the [[Security/Radar|Security Radar]]
* [[Security/Reviews/Review Request Form | Security & Privacy Review Request Form]]
 


== Contributing to the security of Mozilla products ==
== Contributing to the security of Mozilla products ==
Line 64: Line 60:
* [[CA|Mozilla CA Root Program]]
* [[CA|Mozilla CA Root Program]]
* [http://blog.mozilla.com/security Mozilla Security blog]
* [http://blog.mozilla.com/security Mozilla Security blog]
* [[Security/Guidelines/|Security Guidelines]]
* [https://infosec.mozilla.org/guidelines/ Security/Guidelines/]
Gene wood
Confirmed users
107

edits

Retrieved from "https://wiki.allizom.org/Special:MobileDiff/1158167...1234410"

Navigation menu