canmove, Confirmed users
1,537
edits
Platform/2014-Q3-Goals: Difference between revisions
→Security & Privacy Engineering
(→Media) |
|||
| Line 264: | Line 264: | ||
'''Content Security''' | '''Content Security''' | ||
* {{ok|Gecko Security Hooks: Finish code and debugging for New Channel API, start getting reviews}} (dri=tanvi) | * {{ok|Gecko Security Hooks: Finish code and debugging for New Channel API, start getting reviews}} (dri=tanvi) | ||
* {{ | * {{hold|Gecko Security Hooks: Create plan for addon compatibility -- doesn't make sense until New Channel API is done}} (dri=tanvi) | ||
* {{done|CSP: Remove old JS implementation from mozilla-central}} (dri=sstamm) | * {{done|CSP: Remove old JS implementation from mozilla-central}} (dri=sstamm) | ||
* {{ | * {{ok|Evangelism: Security Open Mic presentation + blog post about new CSP implementation, maybe again as brown bag.}} (dri=sstamm) | ||
* {{ok|''[stretch goal]'' CSP: Fix majority of CSP 1.1 compatibility bugs}} (dri=ckerschb) | * {{ok|''[stretch goal]'' CSP: Fix majority of CSP 1.1 compatibility bugs}} (dri=ckerschb) | ||
'''Tracking Protection''' | '''Tracking Protection''' | ||
* {{ok|Referer: Finish implementation of <meta> referrer control with volunteer help}} (dri=sstamm) | * {{ok|Referer: Finish implementation of <meta> referrer control with volunteer help}} (dri=sstamm) | ||
* {{done|Land first implementation of protection in Fx 33/34 off by default.}} (dri=mmc) | * {{done|Land first implementation of protection in Fx 33/34 off by default. BONUS: landed frontend code too}} (dri=mmc) | ||
'''Communications Security''' | '''Communications Security''' | ||
* {{ok|SSL Error Reporting finish first implementation of ssl error reporting feature.}} (dri=grobinson) | * {{ok|SSL Error Reporting finish first implementation of ssl error reporting feature.}} (dri=grobinson) | ||
* {{ok| HPKP - implement pinning http header}} (dri=cviecco) | * {{ok| HPKP - implement pinning http header}} (dri=cviecco) | ||
* {{ | * {{done| Update [[CA:RevocationPlan|roadmap for Cert Revocation improvements]]}} (dri=rbarnes) | ||
* {{done| Create a mechanism to provision phones with an alternate cert}} (dri=mgoodwin) | * {{done| Create a mechanism to provision phones with an alternate cert}} (dri=mgoodwin) | ||
* {{ok| Add measurement/enforcement of compliance with CABF Baseline Requirements}} (dri=keeler) | * {{ok| Add measurement/enforcement of compliance with CABF Baseline Requirements}} (dri=keeler) | ||
| Line 282: | Line 282: | ||
* {{ok| Add support for key wrap/unwrap and ECC in WebCrypto}} (dri=rbarnes) | * {{ok| Add support for key wrap/unwrap and ECC in WebCrypto}} (dri=rbarnes) | ||
* {{ok| ''[stretch goal]'' Get CA Program data into one database}} (dri=kathleen) | * {{ok| ''[stretch goal]'' Get CA Program data into one database}} (dri=kathleen) | ||
* {{done| ''[stretch goal]'' Retire first batch of 1024-bit roots, working towards requiring 2048-bit keys for built-in root certificates}} (dri=kathleen) | |||
=== Firefox and Platform Security === | === Firefox and Platform Security === | ||