Articles in “Firefox”

Passwordless Web Authentication Support via Windows Hello

J.C. Jones

March 19, 2019

Firefox 66, being released this week, supports using the Windows Hello feature for Web Authentication on Windows 10, enabling a passwordless experience on the web that is hassle-free and more … Read more

Defining the tracking practices that will be blocked in Firefox

Steven Englehardt and Marshall Erwin

January 28, 2019

For years, web users have endured major privacy violations. Their browsing continues to be routinely and silently tracked across the web. Tracking techniques have advanced to the point where users … Read more

When does Firefox alert for breached sites?

Luke Crouch

November 14, 2018

Mozilla’s Position on Data Breaches Data breaches are common for online services. Humans make mistakes, and humans make the Internet. Some online services discover, mitigate, and disclose breaches quickly. Others … Read more

Firefox 63 Lets Users Block Tracking Cookies

Steven Englehardt

October 23, 2018

As announced in August, Firefox is changing its approach to addressing tracking on the web. As part of that plan, we signaled our intent to prevent cross-site tracking for all … Read more

Removing Old Versions of TLS

Martin Thomson

October 15, 2018

In March of 2020, Firefox will disable support for TLS 1.0 and TLS 1.1. On the Internet, 20 years is an eternity. TLS 1.0 will be 20 years old in … Read more

Introducing the ASan Nightly Project

Christian Holler

July 19, 2018

Every day, countless Mozillians spend numerous hours testing Firefox to ensure that Firefox users get a stable and secure product. However, no product is bug free and, despite all of … Read more

Preventing data leaks by stripping path information in HTTP Referrers

Luke Crouch

January 31, 2018

To help prevent third party data leakage while browsing privately, Firefox Private Browsing Mode will remove path information from referrers sent to third parties starting in Firefox 59. Referrers can … Read more

Secure Contexts Everywhere

Anne van Kesteren

January 15, 2018

Since Let’s Encrypt launched, secure contexts have become much more mature. We have witnessed the successful restriction of existing, as well as new features to secure contexts. The W3C TAG … Read more

Improving AES-GCM Performance

Franziskus Kiefer

September 29, 2017

AES-GCM is a NIST standardised authenticated encryption algorithm (FIPS 800-38D). Since its standardisation in 2008 its usage increased to a point where it is the prevalent encryption used with TLS. … Read more

Verified cryptography for Firefox 57

Benjamin Beurdouche

September 13, 2017

Traditionally, software is produced in this way: write some code, maybe do some code review, run unit-tests, and then hope it is correct. Hard experience shows that it is very … Read more

Firefox AddressSanitizer builds have been moved

Christian Holler

September 9, 2016

This is a short announcement for all security researchers working on Firefox that use our pre-built AddressSanitzer (ASan) builds. Until recently, you could download these ASan builds from our FTP … Read more

Deprecating the RC4 Cipher

April King

September 11, 2015

As part of our commitment to protect the privacy of our users, Mozilla will disable the insecure RC4 cipher in Firefox in late January 2016, beginning with Firefox 44. Mozilla … Read more