Open main menu
Home
Random
Log in
Settings
About MozillaWiki
MozillaWiki
Search
Security/Reviews/Gaia/pdfjs
Language
Edit
<
Security
|
Reviews
|
Gaia
Revision as of 09:18, 19 September 2013 by
Mgoodwin
(
talk
|
contribs
)
(
→App Review Details
)
(
diff
)
← Older revision
| Latest revision (diff) | Newer revision → (diff)
Contents
1
App Review Details
2
Overview
3
Architecture
3.1
Components
3.2
Relevant Source Code
3.3
Permissions
3.4
Web Activity Handlers
3.5
Web Activity Usage
3.6
Notable Event Handlers
4
Code Review Notes
4.1
1. XSS & HTML Injection attacks
4.2
2. Secure Communications
4.3
3. Secure data storage
4.4
4. Denial of Service
4.5
5. Use of Privileged APIs
4.6
6. Interfaces with other Apps/Content
5
Security Risks & Mitigating Controls
6
Actions & Recommendations
App Review Details
App: PDF Viewer
Review Date: Sep13
Review Lead: mgoodwin
Latest commit:
https://github.com/mozilla-b2g/gaia/commit/2216eb383b005b9f6159f2b04fd7400f4f2641af
Overview
Architecture
Components
Relevant Source Code
Permissions
Web Activity Handlers
Web Activity Usage
Notable Event Handlers
Code Review Notes
1. XSS & HTML Injection attacks
2. Secure Communications
3. Secure data storage
4. Denial of Service
5. Use of Privileged APIs
6. Interfaces with other Apps/Content
Security Risks & Mitigating Controls
Actions & Recommendations