Security/Meetings/SecurityAssurance/2013-05-07
From MozillaWiki
< Security | Meetings | SecurityAssurance
- Time: (Weekly) Tuesday at 13:30 PM PDT / 16:30 PM EDT / 21:30 PM UTC.
- Place: Mozilla HQ, 3A-All Your Base (3rd Floor)
- Phone (US/Intl): 650 903 0800 x92 Conf: 95316#
- Phone (Toronto): 416 848 3114 x92 Conf: 95316#
- Phone (US): 800 707 2533 (pin 369) Conf: 95316#
No Meeting, SF Work Week
| Monday 6-May | ||||||||
|---|---|---|---|---|---|---|---|---|
| All | Other | Firefox Desktop & Mobile | Firefox OS | Web Security | Operations Security | Misc | ||
| Breakfast | 8am - 9am | Catered @Mozilla SF office | ||||||
| Morning | 9 - 10am | Welcome & Intro | ||||||
| 10 - 11am | Security Review Process | Fuzzing: Crash bucketing (JSON format and heuristics) | ||||||
| 11 - noon | Security Review Output Artifacts | |||||||
| Lunch | Catered @Mozilla SF office | |||||||
| Afternoon | Open Team Work | Notes | ||||||
| 2pm - 3pm | Fuzzing: Releasing harness and related tools | Scanning Web Services and APIs with Minion | ||||||
| 3pm - 4pm | ZAP & Firefox| | Cloud, System, & Network Security Policies | ||||||
| 4pm - 5pm | Zest, Gcli howto | |||||||
| Dinner | On your own in SF | |||||||
| Evening Activities | On your own in SF | https://security.etherpad.mozilla.org/TeamMeetUp | ||||||
| Tuesday 7-May | ||||||||
|---|---|---|---|---|---|---|---|---|
| All | Other | Firefox Desktop & Mobile | Firefox OS | Web Security | Operations Security | Misc | ||
| Breakfast | 8am - 9am | Catered @Mozilla SF office | ||||||
| Morning | 9 - 10am | 1) A Look at Metrics 2) Data Protection Program | ||||||
| 10 - 11am | Preventing malware in Firefox OS | (Network Security Monitoring) Presentation & Workshop (mpurzynski) | ||||||
| 11 - noon | Product Security Roadmap (with Security Engineering) | |||||||
| Lunch | Catered @Mozilla SF office | |||||||
| Afternoon | Q&A - Your career, HR questions, benefits, etc - w/ Emily Chardac | Open Team Work | ||||||
| 2pm - 3pm | Static and Dynamic Analysis of JavaScript (2 hr workshop) | Minion & Stooge Demos and brainstorm sessions | Security Alerting (gdestuynder) | |||||
| 3pm - 4pm | Incentivizing Security Fixes | Collecting Logs (mhenry) | ||||||
| 4pm - 5pm | Matt Wobensmith - Security QA | |||||||
| Dinner | Team Dinner | |||||||
| Evening Activities | Team Dinner - 6pm Roy's - 575 Mission St, San Francisco, CA 94105 | |||||||
| Wednesday 8-May | ||||||||
|---|---|---|---|---|---|---|---|---|
| All | Other | Firefox Desktop & Mobile | Firefox OS | Web Security | Operations Security | Misc | ||
| Breakfast | 8am - 9am | Catered @Mozilla SF office | ||||||
| Morning | 9 - 10am | Security Automation - Discuss how to do more than Web Security | ||||||
| 10 - 11am | Endpoint security | Fuzzing with WebIDL | ||||||
| 11 - noon | Q&A with Jim 11-1pm during lunch | |||||||
| Lunch | Catered @Mozilla SF office | |||||||
| Afternoon | 1pm - 2pm | Open Team Work | ||||||
| 2pm - 3pm | Bug Triage (curtisk, yvan, dveditz, joes, abilings) | Fuzzing | Brainstorm security features. Workshop: develop a comparitive analysis against other mobile OS | "Compliance checks
| ||||
| 3pm - 4pm | Identity Syncup | |||||||
| 4pm - 5pm | A - Team : Clint Talbert | Firefox OS Sandboxing w/ seccomp (kang) | ||||||
| Dinner | Pizza and Board Games | |||||||
| Evening Activities | ||||||||
| Thursday 9-May | ||||||||
|---|---|---|---|---|---|---|---|---|
| All | Other | Firefox Desktop & Mobile | Firefox OS | Web Security | Operations Security | Misc | ||
| Breakfast | 8am - 9am | Catered @Mozilla SF office | ||||||
| Morning | 9 - 10am | FYI - Manager hacking is 9-10am in SFO main area. Attend if interested. | ||||||
| 10 - 11am | Review/Adjust Bug Risk Ranking / SecReview Process | ["https://etherpad.mozilla.org/trustzone Fun in the TrustZone: what good is it to FxOS?] | ||||||
| 11 - noon | Fuzzing (Justice League) | Firefox OS Bug Bounty | Social API Review | Compliance checks - Cloud (AWS) | ||||
| Lunch | Catered @Mozilla SF office | |||||||
| Afternoon | 1pm - 2pm | Open Team Work | ||||||
| 2pm - 3pm | Security Assurance - Open House / Show & Tell | |||||||
| 3pm - 4pm | Board room unavailable | Fuzzing (Paramount) | WebDev Chat w/Mike Morgan (SFO-7B) | Infra chat with MRZ (Golden Gate bridge 3rd) | ||||
| 4pm - 5pm | Board room unavailable | Rob Miller (services engineering) 30m talk/preso + 30m Q&A (SFO-3rd floor, Golden Gate) | Fuzzing | |||||
| Dinner | 6pm - Team Dinner & Bowling @ Lucky Strike (200 King Street, San Francisco, CA 94107)| | |||||||
| Evening Activities | ||||||||
| Friday 10-May | ||||||||
|---|---|---|---|---|---|---|---|---|
| All | Other | Firefox Desktop & Mobile | Firefox OS | Web Security | Operations Security | Misc | ||
| Breakfast | 8am - 9am | Catered @Mozilla SF office | ||||||
| Morning | 9 - 10am | Fuzzing: logging | Security Review Outputs | |||||
| 10 - 11am | Orangfuzz with orangutan (gkw) - pushed to 10.30am | Multi Factor Authentication (kang) | ||||||
| 11 - noon | Malicious code in Firefox - Monitoring for suspicious code commits | |||||||
| Lunch | Catered @Mozilla SF office | |||||||
| Afternoon | 1pm - 2pm | Google Security Visit | Open Team Work | |||||
| 2pm - 3pm | Google Security Visit | Google Notes | Asset discovery and vulnerability management (mhenry) | |||||
| 3pm - 3:30pm | Google Security Visit | |||||||
| 3:30 pm - 4pm | Wrap Up | |||||||
| Dinner | On your own in SF | |||||||
| Evening Activities | On your own in SF | |||||||
