Security/Reviews/B2G/NetworkAlerts

From MozillaWiki
< Security‎ | Reviews‎ | B2G
Revision as of 07:53, 16 September 2014 by Cruetten (talk | contribs) (Source code added)
Jump to navigation Jump to search

/!\ WORK IN PROGRESS /!\

Overview

Firefox Accounts Review Details

  • Scope: Timeboxed review of Network Alerts for Firefox OS
  • Review Date: 2014-09-12
  • Review Lead: Christiane Ruetten, cr@mozilla.com

Documentation

Context

Network Alerts is an implementation of a subset of the ETSI Pulic Warning System (PWS) for Firefox OS 2.1. The PWS standard uses a mobile network's Cell Broadcast Service (CBS) to alert mobile phone users, located in a certain area, to civil or national threats or emergencies, for example earthquakes, tornadoes, and the US-specific AMBER Alerts in case of child abduction.

PWS supports multiple message identifiers which map to the various international alert providers and message types, of which Firefox OS's Network Alerts supports only a subset. In many regulations, mobile endpoints are required to support the relevant local PWS channels.

Upon reception of a CBS message, a mobile device is to determine the alert type, and in case of a PWS message, to display the alert's content in a popup fashion that does not require user interaction.

Scope

Network Alerts consists of a Gaia component handling user interaction and modifications to the Gonk code that interfaces the RIL layer — where cell broadcasts enter the system — with the Gaia world.

The following components were reviewed:

  • Network Alerts Gaia app
  • PWS-related code in System notification handling
  • System Messages permission handler
  • PWS-related code in the Gonk RIL glue

The following components were not reviewed:

  • PWS-handling inside the RIL due to lack of code
  • Tests

Relevant Source Code

Gaia

Gonk

Other

Retrieved from "https://wiki.allizom.org/index.php?title=Security/Reviews/B2G/NetworkAlerts&oldid=1015226"