canmove, Confirmed users
1,537
edits
SecurityEngineering/2014/Q3Goals: Difference between revisions
SecurityEngineering/2014/Q3Goals (view source)
Revision as of 18:24, 29 September 2014
, 29 September 2014no edit summary
No edit summary |
|||
| Line 10: | Line 10: | ||
* {{done|Gecko Security Hooks: Finish code and debugging for NS_NewChannel API, start getting reviews.}} See {{bug|1038756}}, {{bug|1006881}} (dri=tanvi) | * {{done|Gecko Security Hooks: Finish code and debugging for NS_NewChannel API, start getting reviews.}} See {{bug|1038756}}, {{bug|1006881}} (dri=tanvi) | ||
* {{defer|Gecko Security Hooks: Create plan for addon compatibility - nothing to do | * {{defer|Gecko Security Hooks: Create plan for addon compatibility - nothing to do until JS impl is done}} (dri=tanvi) | ||
* {{done|CSP: Remove old JS implementation from mozilla-central. Target Fx34.}} See {{bug|994782}} (dri=sstamm) | * {{done|CSP: Remove old JS implementation from mozilla-central. Target Fx34.}} See {{bug|994782}} (dri=sstamm) | ||
* {{done|Evangelism: Security blog post about new CSP implementation, maybe again as brown bag.}} (dri=sstamm) | * {{done|Evangelism: Security blog post about new CSP implementation, maybe again as brown bag.}} (dri=sstamm) | ||
| Line 19: | Line 19: | ||
;Who: Monica, Garrett, Sid, Georgios | ;Who: Monica, Garrett, Sid, Georgios | ||
* {{ | * {{risk|Referer: Finish implementation of <meta> referrer control with volunteer help.}} See {{bug|704320}}, very close. (dri=sstamm) | ||
* {{done|Land backend and bridge code for first implementation of protection in Fx 33/34 off by default. BONUS: landed frontend code too}} (dri=mmc) | * {{done|Land backend and bridge code for first implementation of protection in Fx 33/34 off by default. BONUS: landed frontend code too}} (dri=mmc) | ||
| Line 26: | Line 26: | ||
;Who: Richard, Kathleen, Keeler, Camilo, Harsh, Garrett, Monica | ;Who: Richard, Kathleen, Keeler, Camilo, Harsh, Garrett, Monica | ||
* {{ | * {{done|SSL Error Reporting finish first implementation of ssl error reporting feature.}} (dri=mgoodwin) | ||
* {{ok|HPKP - implement pinning http header}} (dri=cviecco) | * {{ok|HPKP - implement pinning http header}} (dri=cviecco) | ||
* {{done| Update [[CA:RevocationPlan|roadmap for Cert Revocation improvements]]}} (dri=rbarnes) | * {{done| Update [[CA:RevocationPlan|roadmap for Cert Revocation improvements]]}} (dri=rbarnes) | ||
| Line 33: | Line 33: | ||
* {{done| Create a tool for testing CA certificate compliance and EV-readiness}}. See {{bug|926599}} and {{bug|1029095}} (dri=keeler) | * {{done| Create a tool for testing CA certificate compliance and EV-readiness}}. See {{bug|926599}} and {{bug|1029095}} (dri=keeler) | ||
* {{ok| Add support for key wrap/unwrap and ECC in WebCrypto}} (dri=rbarnes) | * {{ok| Add support for key wrap/unwrap and ECC in WebCrypto}} (dri=rbarnes) | ||
* {{ | * {{defer| ''[stretch goal]'' Enable revocation of intermediate CAs through block list service}} (dri=mgoodwin, keeler) | ||
* {{done| ''[stretch goal]'' Retire first batch of 1024-bit roots, working towards requiring 2048-bit keys for built-in root certificates}} (dri=kathleen) | * {{done| ''[stretch goal]'' Retire first batch of 1024-bit roots, working towards requiring 2048-bit keys for built-in root certificates}} (dri=kathleen) | ||
* {{ | * {{defer| ''[stretch goal]'' Get CA Program data into one database}} (dri=kathleen) | ||