Security/Features/TLS Telemetry: Difference between revisions

Revision as of 23:18, 16 November 2011

Please use "Edit with form" above to edit this page.

Status

TLS Telemetry
Stage	Draft
Status	In progress
Release target	Firefox 11
Health	OK
Status note	`

{{#set:Feature name=TLS Telemetry

|Feature stage=Draft |Feature status=In progress |Feature version=Firefox 11 |Feature health=OK |Feature status note=` }}

Team

Product manager	David Chan
Directly Responsible Individual	David Chan
Lead engineer	David Chan
Security lead	David Chan
Privacy lead	Sid Stamm
Localization lead	`
Accessibility lead	`
QA lead	`
UX lead	`
Product marketing lead	`
Operations lead	`
Additional members	Brandon Sterne

{{#set:Feature product manager=David Chan

|Feature feature manager=David Chan |Feature lead engineer=David Chan |Feature security lead=David Chan |Feature privacy lead=Sid Stamm |Feature localization lead=` |Feature accessibility lead=` |Feature qa lead=` |Feature ux lead=` |Feature product marketing lead=` |Feature operations lead=` |Feature additional members=Brandon Sterne }}

Open issues/risks

`

Stage 1: Definition

1. Feature overview

`

2. Users & use cases

`

3. Dependencies

`

4. Requirements

`

Non-goals

`

Stage 2: Design

5. Functional specification

`

6. User experience design

`

Stage 3: Planning

7. Implementation plan

`

8. Reviews

Security review

`

Privacy review

`

Localization review

`

Accessibility

`

Quality Assurance review

`

Operations review

`

Stage 4: Development

9. Implementation

`

Stage 5: Release

10. Landing criteria

` {{#set:Feature open issues and risks=` |Feature overview=` |Feature users and use cases=` |Feature dependencies=` |Feature requirements=` |Feature non-goals=` |Feature functional spec=` |Feature ux design=` |Feature implementation plan=` |Feature security review=` |Feature privacy review=` |Feature localization review=` |Feature accessibility review=` |Feature qa review=` |Feature operations review=` |Feature implementation notes=` |Feature landing criteria=` }}

Feature details

Priority	Unprioritized
Rank	999
Theme / Goal	`
Roadmap	`
Secondary roadmap	`
Feature list	`
Project	`
Engineering team	`

{{#set:Feature priority=Unprioritized

|Feature rank=999 |Feature theme=` |Feature roadmap=` |Feature secondary roadmap=` |Feature list=` |Feature project=` |Feature engineering team=` }}

Team status notes

	status	notes
Products	`	`
Engineering	`	`
Security	`	`
Privacy	`	`
Localization	`	`
Accessibility	`	`
Quality assurance	`	`
User experience	`	`
Product marketing	`	`
Operations	`	`

{{#set:Feature products status=`

|Feature products notes=` |Feature engineering status=` |Feature engineering notes=` |Feature security status=` |Feature security health=` |Feature security notes=` |Feature privacy status=` |Feature privacy notes=` |Feature localization status=` |Feature localization notes=` |Feature accessibility status=` |Feature accessibility notes=` |Feature qa status=` |Feature qa notes=` |Feature ux status=` |Feature ux notes=` |Feature product marketing status=` |Feature product marketing notes=` |Feature operations status=` |Feature operations notes=` }}

Goals of Study:

Collect cipher suites exchanged during handshake and negotiated cipher
- nsISSLStatus.idl exposes `cipherName`
Collect TLS/SSL version
Collect certificate key strength (bits)
Collect TLS/SSL certificate related errors
- What kind of errors are our users encountering?
- Domain mismatch, expired, untrusted issuer, etc

@@ Line 19: / Line 19: @@
 }}
 {{FeatureTeamStatus}}
 Goals of Study:
-* Collect cipher suites exchanged during handshake and negotiated cipher
-* Collect TLS/SSL version
+*Collect cipher suites exchanged during handshake and negotiated cipher
-* Collect certificate key strength (bits)
+** [http://mxr.mozilla.org/mozilla-central/source/security/manager/ssl/public/nsISSLStatus.idl nsISSLStatus.idl] exposes `cipherName`
-* Collect TLS/SSL certificate related errors
+*Collect TLS/SSL version
-** What kind of errors are our users encountering?
+*Collect certificate key strength (bits)
-** Domain mismatch, expired, untrusted issuer, etc
+*Collect TLS/SSL certificate related errors
+**What kind of errors are our users encountering?
+**Domain mismatch, expired, untrusted issuer, etc