Identity is a critical part of B2G, so this is a security review to consider how the various parts (b2g, gaia, browserid/persona) fit together. Some initial information is here: https://wiki.mozilla.org/Gaia/System/Identity More background is needed.
Assignee: nobody → ptheriault
Component: Security Assurance → Security Assurance: Review Request
Latest Identity flows: http://people.mozilla.com/~lco/Identity_B2G/
Ok so the milestone 4 spreadsheet for b2g tracks this list of bugs (which is everything identity, so I guess a subset of bugs is required here: https://bugzilla.mozilla.org/buglist.cgi?product=Core;component=Identity;resolution=---;list_id=3659048
Assignee: ptheriault → rforbes
Risk/Priority Ranking Exercise https://wiki.mozilla.org/Security/RiskRatings Priority: 4 (P2) - Mozilla Initiative Operational: 0 - N/A User: 3 - Major Privacy: 3 - Major Engineering: 5 - Blocker Reputational: 5 - Blocker Priority Score: 64
Severity: normal → blocker
Whiteboard: [pending secreview][start mm/dd/yyyy][target mm/dd/yyyy] → [pending secreview][start mm/dd/yyyy][target mm/dd/yyyy][score:64::High]
ok, finally made it through all this. everything looks ok.
Status: NEW → RESOLVED
Last Resolved: 6 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.