SummerOfCode/2012/UserCSP: Difference between revisions

No edit summary
No edit summary
 
(32 intermediate revisions by the same user not shown)
Line 1: Line 1:
<p><font color="red"><b>Project Title:</b> User Specified Content Security Policy</font>
<p><font color="red"><b>Project Title:</b> User Specified Content Security Policy</font><hr />
</p>
<p><br />
<b>Goal:</b> The goal of this project is to allow savvy users to be able to voluntarily specify their own CSP policies for websites that have not implemented CSP policies.
<br />
<br />
</p>
<b>Goal:</b> The goal of this project is to allow savvy users to be able to voluntarily specify their own CSP policies for websites that have not implemented CSP policies. And automatically infer CSP policies for frequently visited websites if neither user nor web site publisher specify the CSP policy.
<p><font color="red"><b>Project Status </b></font>
<br /><br />
</p>
 
<font color="red"><b>Developer </b></font>
<hr />
* PATIL Kailas < patilkr24  AT  gmail  DOT  com >
<br/>
 
<font color="red"><b>Project Wiki </b></font>
<hr />
<hr />
<p><b>Weekly Status Updates: </b>
[[SummerOfCode/2012/UserCSP/Wiki|WikiPage]]
</p>
<br />
|-
 
|
<font color="red"><b>Project Status </b></font>
* [[WeeklyUpdates/2012-04-23|April 23, 2012]]
<hr />
Schedule of userCSP project deliverable:
 
* April 30 - May 6 : Develop an add-on for userCSP.
* May 7 - May 13  : Testing SQLite Database library
* May 14 - May 20  : Create Database table to store user define policies. User provided domain name will be the primary key in the userCSP database.
* May 21 - May 27  : Integrate Database into add-on UI
* May 28 - June 10 : CSP Hooking and reading HTTP header.
* June 11 - June 17: Read website CSP and show it in add-on UI.
* June 19 - June 24: Implement combine strict and combine loose functionality.
* June 25 - July 1 :  Fix issues: Firefox version number issue, UI not going away, intersectWith, All tab UI, CombineLoose and CombineStrict features.
* July 2 - July 8  : Discuss userCSP UI with mozilla UI team for their feedback. Filtering user inputs and follow w3c Standard .
* July 9 - July 15 : Testing add-on and discussion on how to infer policy automatically.
* July 16 - July 29: Develop Database for storing information for automatically inferring CSP policy.
* July 30 - Aug 5  : Implement automatic CSP inferring rules.
* Aug 6 - Aug 19  : Test add-on with auto infer mode and prepare whitelist for commonly use third-party sites (such as, Facebook like button, Google gadget, etc.)
 
<hr />
<b>Weekly Status Updates: </b> <br />
 
* [[SummerOfCode/2012/UserCSP/WeeklyUpdates/2012-04-23|April 23, 2012]]
 
* [[SummerOfCode/2012/UserCSP/WeeklyUpdates/2012-04-30|April 30, 2012]]
 
* [[SummerOfCode/2012/UserCSP/WeeklyUpdates/2012-05-07|May 07, 2012]]
 
* [[SummerOfCode/2012/UserCSP/WeeklyUpdates/2012-05-14|May 14, 2012]]
 
* [[SummerOfCode/2012/UserCSP/WeeklyUpdates/2012-05-21|May 21, 2012]]
 
* [[SummerOfCode/2012/UserCSP/WeeklyUpdates/2012-05-28|May 28, 2012]]
 
* [[SummerOfCode/2012/UserCSP/WeeklyUpdates/2012-06-04|June 4, 2012]]
 
* [[SummerOfCode/2012/UserCSP/WeeklyUpdates/2012-06-11|June 11, 2012]]
 
* [[SummerOfCode/2012/UserCSP/WeeklyUpdates/2012-06-18|June 18, 2012]]
 
* [[SummerOfCode/2012/UserCSP/WeeklyUpdates/2012-06-25|June 25, 2012]]
 
* [[SummerOfCode/2012/UserCSP/WeeklyUpdates/2012-07-02|July 2, 2012]]
 
* [[SummerOfCode/2012/UserCSP/WeeklyUpdates/2012-07-09|July 9, 2012]]
 
* [[SummerOfCode/2012/UserCSP/WeeklyUpdates/2012-07-16|July 16, 2012]]
 
* [[SummerOfCode/2012/UserCSP/WeeklyUpdates/2012-07-23|July 23, 2012]]
 
* [[SummerOfCode/2012/UserCSP/WeeklyUpdates/2012-07-30|July 30, 2012]]
 
* [[SummerOfCode/2012/UserCSP/WeeklyUpdates/2012-08-06|August 6, 2012]]
 
* [[SummerOfCode/2012/UserCSP/WeeklyUpdates/2012-08-13|August 13, 2012]]
 
* August 20, 2012
 
<hr />
<hr />

Latest revision as of 18:05, 17 August 2012

Project Title: User Specified Content Security Policy



Goal: The goal of this project is to allow savvy users to be able to voluntarily specify their own CSP policies for websites that have not implemented CSP policies. And automatically infer CSP policies for frequently visited websites if neither user nor web site publisher specify the CSP policy.

Developer


  • PATIL Kailas < patilkr24 AT gmail DOT com >


Project Wiki


WikiPage

Project Status


Schedule of userCSP project deliverable:

  • April 30 - May 6 : Develop an add-on for userCSP.
  • May 7 - May 13  : Testing SQLite Database library
  • May 14 - May 20  : Create Database table to store user define policies. User provided domain name will be the primary key in the userCSP database.
  • May 21 - May 27  : Integrate Database into add-on UI
  • May 28 - June 10 : CSP Hooking and reading HTTP header.
  • June 11 - June 17: Read website CSP and show it in add-on UI.
  • June 19 - June 24: Implement combine strict and combine loose functionality.
  • June 25 - July 1 : Fix issues: Firefox version number issue, UI not going away, intersectWith, All tab UI, CombineLoose and CombineStrict features.
  • July 2 - July 8  : Discuss userCSP UI with mozilla UI team for their feedback. Filtering user inputs and follow w3c Standard .
  • July 9 - July 15 : Testing add-on and discussion on how to infer policy automatically.
  • July 16 - July 29: Develop Database for storing information for automatically inferring CSP policy.
  • July 30 - Aug 5  : Implement automatic CSP inferring rules.
  • Aug 6 - Aug 19  : Test add-on with auto infer mode and prepare whitelist for commonly use third-party sites (such as, Facebook like button, Google gadget, etc.)

Weekly Status Updates:

  • August 20, 2012