Closed Bug 742796 Opened 12 years ago Closed 12 years ago

Security review for Identity KPI Backend

Categories

(mozilla.org :: Security Assurance: Review Request, task)

Product:
mozilla.org
Component:
Security Assurance: Review Request
Type:
task
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: ozten, Assigned: rforbes)

References

(Depends on 1 open bug, Blocks 1 open bug,
URL
)

Details

(Whiteboard: [completed secreview][start 04/d23/2012][target mm/dd/yyy]) 

1. Who is/are the point of contact(s) for this review?

ozten

secondary: lloyd or benadida in #identity

2. Please provide a short description of the feature / application (e.g. problem solved, use cases, etc.):

The main objective of this feature/product is: to allow the  BrowserID product team to access how well changes to the service are meeting key performance indicators (KPI). UX will design a feature change, engineering will build it and a KPI Dashboard will give us the  feedback of how successful the change is with real users. 
KPI Backend must be built before we build the KPI Dashboard, which will  be built next quarter and have it's own privacy review. KPI Backend  stores the raw data described below.

3. Please provide links to additional information (e.g. feature page, wiki) if available and not yet included in feature description:

Main Feature Issue - https://github.com/mozilla/browserid/issues/1060
Mailing list discussion - https://groups.google.com/forum/?fromgroups#!searchin/mozilla.dev.identity/learning/mozilla.dev.identity/QqaLjbU8mng/UovZPm7wHfgJ
Privacy Review Information - https://wiki.mozilla.org/Privacy/Reviews/KPI_Backend
Privacy Review Questionnaire - https://privacy.etherpad.mozilla.org/66

4. Does this request block another bug? If so, please indicate the bug number

Not currently.

5. This review will be scheduled amongst other requested reviews. What is the urgency or needed completion date of this review?

We'd like to get the architecture reviewed soon. Completing this stage is a per-requisite for the second stage, which an intern will work on. Not completing the KPI Backend by end of Q2 will put their internship at risk.

6. Please answer the following few questions: (Note: If you are asked to describe anything, 1-2 sentences shall suffice.)
6.1 Does this feature or code change affect Firefox, Thunderbird or any product or service the Mozilla ships to end users?

No, this affects the web based shim for BrowserID.

6.2 Are there any portions of the project that interact with 3rd party services?

No. 3rd party websites are relaying parties which consume BrowserID and we would start capturing interaction metrics, but we have a user data review look at this aspect.

6.3 Will your application/service collect user data? If so, please describe 

Please see https://privacy.etherpad.mozilla.org/66 for full details.

No personally identifiable user information will be collected, but the point of this backend is to collect new data which we haven't collected before. This is user interaction data.

7. If you feel something is missing here or you would like to provide other kind of feedback, feel free to do so here (no limits on size):

8. Desired Date of review (if known from https://mail.mozilla.com/home/ckoenig@mozilla.com/Security%20Review.html) and whom to invite. 

4/17
> 6.1 Does this feature or code change affect Firefox, Thunderbird or any product or service the Mozilla ships to end users?

> No, this affects the web based shim for BrowserID.

Sorry, I misread this question. Yes it does affect a Mozilla service.
(In reply to Austin King [:ozten] from comment #0)

> 8. Desired Date of review (if known from
> https://mail.mozilla.com/home/ckoenig@mozilla.com/Security%20Review.html)
> and whom to invite. 
> 
> 4/17

There are no available dates on the 17th (as we don't have availability on Tues). Please check the calendar for an available date. Also we need to know whom to invite to the meeting from your side. If it is just you then please let us know that.
Assignee: nobody → curtisk
Status: NEW → ASSIGNED
:rforbes / :dchan
I need one of you to please be the lead for review on this bug, potential review next week. Does one of you have the bandwidth for this?
due to other assignments this is being assigned to :rforbes as lead
Whiteboard: [pending secreview] → [pending secreview][sec lead:rforbes]
(In reply to Curtis Koenig [:curtisk] from comment #3)
I'm sorry, I didn't know about this process.

Monday 4/23 1pm looks open. Can we have this slot please?
we completed a design review of this.  No code has been written so we have nothing to look at as of yet.  We will need code to review, and a staging version of the API in order to complete this review.
Review wiki: https://wiki.mozilla.org/Security/AppsProject/IdentityKPIBackend
Keywords: sec-review-needed
Whiteboard: [pending secreview][sec lead:rforbes] → [in-progress secreview][start 04/d23/2012][target mm/dd/yyy]
There is now code and an environment you can play with. Sorry I didn't update sooner.

http://dev.123done.org/
(In reply to Curtis Koenig [:curtisk] from comment #9)

Per feedback from @curtisk, I've reworked
https://wiki.mozilla.org/Privacy/Reviews/KPI_Backend#Data_Storage_Component
@curtisk - Are we good with that format update? Has this moved into review?
Blocks: 773400
Blocks: 773404
(In reply to Austin King [:ozten] from comment #12)

I see this is moving out of review and I see some new content with yellow blocks that say "Resolution: [new]"

Should I edit that wiki page and respond in the yellow blocks, or what is the next step?

https://wiki.mozilla.org/Privacy/Reviews/KPI_Backend
Curtis is away for a week and he would know the optimal process here. Since he's gone, I'm going to suggest that you go ahead and edit the wiki page if you have data to add to those sections.
(In reply to Al Billings [:abillings] from comment #14)

Wonderful. I've prefixed my comments with (ozten).

Except for "document and publish a data collection and retention policy" I don't see any new actions, which haven't been part of another bug or current plan.

Policy:
Where should I file a bug for "document and publish a data collection and retention policy"? We did document aspects of a data collection and retention policy in our user data safety review.

Overall:
Please let us know if you need anything else.
We have a "Mozilla" policy for this, joes in the opsec team is responsible for it. That item can remain unfinished, we have other reviews held on this as well. The issue right now is that we need to get it out of Mana and get it publicly published.
i missed the fact that there is code available to look over.  i will do this monday and tuesday this week.
sorry, i blew updating this bug.  vegas does that to me.  i reviewed the code and given that it is behind a vpn, this is fine.
Status: ASSIGNED → RESOLVED
Closed: 12 years ago
Resolution: --- → FIXED
Status: RESOLVED → VERIFIED
Comments made on bugzilla in vegas, stay in vegas.

Thanks rforbes!
Keywords: sec-review-complete
Whiteboard: [in-progress secreview][start 04/d23/2012][target mm/dd/yyy] → [completed secreview][start 04/d23/2012][target mm/dd/yyy]
@dchan Note: easiest way to start testing dev is to go to http://dev.123done.org/ and us an @yahoo.com email addresses.
I think Curtis's most recent mail is saying that our reviews shouldn't be "VERIFIED" until all the dependent bugs are fixed. Moving back to RESOLVED.
Status: VERIFIED → RESOLVED
Closed: 12 years ago12 years ago
You need to log in before you can comment on or make changes to this bug.