Confirmed users
483
edits
Firefox OS Data Sync: Difference between revisions
→Authentication
m (Formatting fixes) |
|||
| Line 56: | Line 56: | ||
=== Authentication === | === Authentication === | ||
[[Firefox Accounts]] will be the authentication mechanism used by Firefox Cloud. | [[Firefox Accounts]] will be the authentication mechanism used by Firefox Cloud. | ||
Using Firefox Accounts should enable us to do the data encryption in the client without worrying about storing any private key or secret in the clients. We can obtain a key derived from the user's Firefox Accounts and encrypt the local data on the fly before sending it to the cloud. | Using Firefox Accounts should enable us to do the data encryption in the client without worrying about storing any private key or secret in the clients. [https://mail.mozilla.org/pipermail/dev-fxacct/2014-December/001260.html We can obtain a key derived from the user's Firefox Accounts] and encrypt the local data on the fly before sending it to the cloud. | ||
The authentication keys for the remote storages that the user chooses to use will be stored in the Firefox Cloud server also encrypted with a symmetric key that the client will provide on every sync request. That way if the Firefox Cloud server is compromised, the attacker won't get access to the remote storage accounts. | The authentication keys for the remote storages that the user chooses to use will be stored in the Firefox Cloud server also encrypted with a symmetric key that the client will provide on every sync request. That way if the Firefox Cloud server is compromised, the attacker won't get access to the remote storage accounts. | ||
=== Documents vs Files === | === Documents vs Files === | ||
=== Service === | === Service === | ||