Security/B2G/2013 27 5
From MozillaWiki
Contents
- 1 FirefoxOS Security Team Meeting
- 1.1 News
- 1.2 Weekly goals
- 1.3 Goal Status Updates
- 1.3.1 FirefoxOS related security reviews (pauljt)
- 1.3.2 Develop and land tests for security features (dchan)
- 1.3.3 Bug Bounty defined and ready to launch (freddyb)
- 1.3.4 Compile Firefox OS issue register (pauljt)
- 1.3.5 Continue to document Firefox OS Security (pauljt)
- 1.3.6 Document Update schedule & incident response procedure (pauljt)
- 1.3.7 Firefox OS Sandboxing (kang)
- 1.3.8 Malware Defense (cr)
FirefoxOS Security Team Meeting
1pm PST, B2G Vidyo room Prior notes are here: https://wiki.mozilla.org/Security/B2G/2013_20_5
News
https://twitter.com/0xroot/status/351860112257855488/photo/1
^--- curtis reached out: https://twitter.com/mozsec/status/352157613246525441
freddyb will talk to curtis.. or may have :p ✔
need to draft incident response policy with carriers
Comparison document: https://docs.google.com/a/mozilla.com/spreadsheet/ccc?key=0Ap-jgPe0UrMhdGdIbEhuNDNlOUpjcFFVYXNQSjlONXc#gid=0 - automation - timeboxing - security champion
Weekly goals
Last Week: [dc] - mozapp iframe 751026 - done [dc] - tethinerg 776502 Current:
Goal Status Updates
- Q2 Review target: https://wiki.mozilla.org/Security/B2G/Reviews
Develop and land tests for security features (dchan)
n/a
Bug Bounty defined and ready to launch (freddyb)
- draft doc raised towards brendan and andreas (no reply yet)
Compile Firefox OS issue register (pauljt)
'hardening firefox os' https://docs.google.com/a/mozilla.com/document/d/16TrBjWhjnH0AQV_6I_jEGVNJKXDmKt8T4K_P-lKx9cc/edit#
Continue to document Firefox OS Security (pauljt)
Document Update schedule & incident response procedure (pauljt)
Firefox OS Sandboxing (kang)
http://www.phoronix.com/scan.php?page=news_item&px=MTM5NjQ
DT progresses on supervisor
Seccomp review... well dhyland land is back today so im going to spam him
mcoates is aware that its taking long
Malware Defense (cr)
- no updates
