Security/B2G/2014 04 9

From MozillaWiki

< Security‎ | B2G

Jump to: navigation, search

Contents

1 FirefoxOS Security Team Meeting

FirefoxOS Security Team Meeting

1pm PST, B2G Vidyo room Prior notes are here: https://wiki.mozilla.org/Security/B2G/2014_02_24

Agenda Items

goals: https://docs.google.com/a/mozilla.com/document/d/1oEndgbZegjKwvHDSmay9hWzXGbxFAwiVIstKXqpJ2mw/edit#

Reviews: - NFC: ar - Loop freddy - FxA - cr - Haida - omerta - findmyphone -pauljt

key reviews
- 2.0 prvileges/security changes: https://bugzilla.mozilla.org/show_bug.cgi?id=993266
sandcomp flame edition
reporting

sandcomp all the things.

News

[:cr] Apple rumored to develop own baseband: http://appleinsider.com/articles/14/04/08/rumor-apple-plans-to-bring-baseband-chip-design-in-house
B2G has OpenSSL 1.0.0, is not vulnerable

Notes

Previous Action Items

New Action Items

key security reviews

identify scope for each of them [everyone]
pauljt

- send an email to get the

Goal Status Updates

[:cr] Sec Review Training concluded
- Published at https://wiki.mozilla.org/Marketplace/Reviewers/Apps/Guide/SecReviewTraining
- Conveniently linked at the Reviewer Guide landing page https://wiki.mozilla.org/Marketplace/Reviewers/Apps/Guide

Other stuff

Retrieved from "https://wiki.mozilla.org/index.php?title=Security/B2G/2014_04_9&oldid=965094"