Security/B2G/2014 04 9
From MozillaWiki
Contents
FirefoxOS Security Team Meeting
1pm PST, B2G Vidyo room Prior notes are here: https://wiki.mozilla.org/Security/B2G/2014_02_24
Agenda Items
- goals: https://docs.google.com/a/mozilla.com/document/d/1oEndgbZegjKwvHDSmay9hWzXGbxFAwiVIstKXqpJ2mw/edit#
Reviews: - NFC: ar - Loop freddy - FxA - cr - Haida - omerta - findmyphone -pauljt
- key reviews
- 2.0 prvileges/security changes: https://bugzilla.mozilla.org/show_bug.cgi?id=993266
- sandcomp flame edition
- reporting
sandcomp all the things.
News
- [:cr] Apple rumored to develop own baseband: http://appleinsider.com/articles/14/04/08/rumor-apple-plans-to-bring-baseband-chip-design-in-house
- B2G has OpenSSL 1.0.0, is not vulnerable
Notes
Previous Action Items
New Action Items
key security reviews
- identify scope for each of them [everyone]
- pauljt
- send an email to get the
Goal Status Updates
- [:cr] Sec Review Training concluded
- Published at https://wiki.mozilla.org/Marketplace/Reviewers/Apps/Guide/SecReviewTraining
- Conveniently linked at the Reviewer Guide landing page https://wiki.mozilla.org/Marketplace/Reviewers/Apps/Guide