Security/Meetings/SecurityAssurance/2013-02-12: Difference between revisions

From MozillaWiki
Jump to navigation Jump to search
(Created page with "{{SecAssuranceMeetingInfo}} {{TOC right}}")
 
No edit summary
 
Line 1: Line 1:
{{SecAssuranceMeetingInfo}}
{{SecAssuranceMeetingInfo}}
{{TOC right}}
{{TOC right}}
=Agenda=
* [curtisk] Third party reviews
** requested new questions
*** Who is the primary point of contact for security issues?
*** What means of secure communications are available to discuss or report sensitive security issues?
** process updates - what can we do better?
* [yboily] Contributor communications
**
* dchan PTO thurs, in NYC next Friday
* Goals - Please keep status up to date -  https://docs.google.com/a/mozilla.com/spreadsheet/ccc?key=0AmLct3lOMM6ZdEI4SlE0eGRWdkN5bXBpbV8wcjNzNUE
* Metrics
** https://security-review-statistics.vcap.mozillalabs.com/
** Review Security Radar Page - https://wiki.mozilla.org/Security/Radar
*** data updated to show this quarter
=Upcoming Speaking Engagements=
(List it at these two locations too: https://developer.mozilla.org/en-US/events & https://wiki.mozilla.org/Security/Talks )
* Raymond Forbes : Feb 27 - March 2 : Nullcon : Bug Bounty Programs
* David Chan: Feb 22 : taking to a small group of engineers about security testing at Animoto
=Planned Blog Posts=
* https://docs.google.com/a/mozilla.com/spreadsheet/ccc?key=0AlDw2hHXmVgCdHN3LWZTZ0hjMElPc1g2clRKb2lNN3c
=Security Review Status (curtisk)=
* Completed in Q4 2012: 50
https://security-review-statistics.vcap.mozillalabs.com/weekly
=Operations Security Update (Joe Stevensen)=
=Project Updates =
Please add your name to the update so we know who to follow up with
== Firefox Desktop ==
== Firefox Mobile ==
== Firefox OS ==
* https://wiki.mozilla.org/Security/B2G/Reviews#Gaia_App_Reviews
== Firefox Core ==
* [decoder] LLVM: Working on msan and ubsan support, compiling issues resolved
* [decoder] JS: Upcoming fuzzing for OdinMonkey (https://bugzilla.mozilla.org/show_bug.cgi?id=840284)
* [decoder] mfbt is getting a unified interface for ASan/Valgrind annotations ( https://bugzilla.mozilla.org/show_bug.cgi?id=838557 ) to improve usage of these on our codebase
== MarketPlace ==
== Web Apps ==
== Services ==
== Operation Security ==

Latest revision as of 02:07, 13 February 2013


« previous week | index | next week »
  • Time: (Weekly) Tuesday at 13:30 PM PDT / 16:30 PM EDT / 21:30 PM UTC.
  • Place: Mozilla HQ, 3A-All Your Base (3rd Floor)
  • Phone (US/Intl): 650 903 0800 x92 Conf: 95316#
  • Phone (Toronto): 416 848 3114 x92 Conf: 95316#
  • Phone (US): 800 707 2533 (pin 369) Conf: 95316#

Agenda

Upcoming Speaking Engagements

(List it at these two locations too: https://developer.mozilla.org/en-US/events & https://wiki.mozilla.org/Security/Talks )

  • Raymond Forbes : Feb 27 - March 2 : Nullcon : Bug Bounty Programs
  • David Chan: Feb 22 : taking to a small group of engineers about security testing at Animoto

Planned Blog Posts

Security Review Status (curtisk)

  • Completed in Q4 2012: 50

https://security-review-statistics.vcap.mozillalabs.com/weekly

Operations Security Update (Joe Stevensen)

Project Updates

Please add your name to the update so we know who to follow up with

Firefox Desktop

Firefox Mobile

Firefox OS

Firefox Core

MarketPlace

Web Apps

Services

Operation Security

Retrieved from "https://wiki.allizom.org/index.php?title=Security/Meetings/SecurityAssurance/2013-02-12&oldid=518602"