Protecting Firefox Data with Content Signatures

Protecting Firefox Data with Content Signatures

USENIX Enigma Conference via YouTube Direct link

Delivering Content Signatures

8 of 15

8 of 15

Delivering Content Signatures

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Protecting Firefox Data with Content Signatures

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Intro
  2. 2 Updating Firefox Updates
  3. 3 Updates Security
  4. 4 Serving data through web APIs Industry best practice: HTTPS and trust the backend. That has two problems
  5. 5 HTTPS Interception . 4% of Firefox Updates are being intercepted
  6. 6 Compromise of web API
  7. 7 Internal Firefox PKI
  8. 8 Delivering Content Signatures
  9. 9 Verifying Content Signatures
  10. 10 Operational Security
  11. 11 Some interesting problems
  12. 12 Checking certificate validity . Signature verification fails when client clock
  13. 13 Measuring validation failures . Firefox drops the data when the signature does not validate
  14. 14 Emergency revocations
  15. 15 Implementation complexity

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.