Building and Breaking the Browser at Blackhat

Mike Shaver and I will be speaking at Blackhat August 1-2, 2007 on Firefox Security. It looks like there will be a number of Mozilla folks in attendance. I hope to see some of you there.

Building and Breaking the Browser

Traditional software vendors have little interest in sharing the gory details of what is required to secure a large software project. Talking about security only draws a spotlight to what is generally considered a weakness. Mozilla is using openness and transparency to better secure its products and help other software projects do the same.

Mozilla has built and collaborated on tools to secure the Firefox Web browser and Thunderbird e-mail client, the first of which will be released at Blackhat Las Vegas 2007. These tools include protocol fuzzers for HTTP and FTP and a fuzzer for Javascript, which together have led to the discovery and resolution of dozens of critical security bugs. These tools may be useful to anyone developing or testing applications that implement or depend on these technologies.

Window Snyder and Mike Shaver will introduce these tools at BlackHat Las Vegas 2007 and discuss methods used to identify vulnerabilities in Firefox; plans for expanding the scope of Mozilla’s work on Web security, and how Mozilla’s security community uses openness and transparency to protect 100 million users around the world. Learn how to apply Mozilla’s tools and techniques to secure your own software, and get an early look at new security features for Firefox 3.

One comment on “Building and Breaking the Browser at Blackhat”

  1. Ping from Mozilla Security Blog » Blog Archives » Off to Black Hat! on

    […] I’m heading to Las Vegas tomorrow for the Black Hat Briefings.  If you’re in town you can catch me speaking on Thursday morning on Building and Breaking the Browser. […]