Improving Transparency and Assurance in the Web PKI: Mozilla Root Store Policy v3.1 Mozilla remains committed to maintaining a secure, trustworthy, and transparent Web PKI. Today... 2026-6-29 11:33:46 | 阅读: 6 | 收藏 | Mozilla Security Blog - blog.mozilla.org mozilla mrsp operational cps oversight

Firefox Security Response to pwn2own 2025 Mozilla的Firefox浏览器在pwn2own比赛中被攻击两次，但均未突破沙盒。团队迅速发布更新修复漏洞，并继续优化安全架构和响应机制。... 2025-5-17 21:17:47 | 阅读: 13 | 收藏 | Mozilla Security Blog - blog.mozilla.org security mozilla pwn2own neither esr

Updated GPG key for signing Firefox Releases 该页面介绍如何订阅Firefox相关资讯，用户可填写邮箱地址、选择国家、语言及邮件格式，并需同意隐私政策以接收 Mozilla 的信息。... 2025-4-1 08:31:13 | 阅读: 15 | 收藏 | Mozilla Security Blog - blog.mozilla.org mozilla okay

Enhancing CA Practices: Key Updates in Mozilla Root Store Policy, v3.0 Mozilla推出新策略MRSP v3.0，旨在提升Web PKI安全性。重点解决证书撤销延迟问题，并通过增强自动化、分隔TLS与S/MIME证书用途、加强CA密钥安全等措施提升整体信任度。... 2025-3-12 16:14:0 | 阅读: 24 | 收藏 | Mozilla Security Blog - blog.mozilla.org revocation security mrsp mozilla ensuring

Behind the Scenes: Fixing an In-the-Wild Firefox Exploit At Mozilla, browser security is a critical mission, and part of that mission... 2024-10-11 20:14:24 | 阅读: 11 | 收藏 | Mozilla Security Blog - blog.mozilla.org security eset reverse mission pwn2own

IPC Fuzzing with Snapshots Process separation remains one of the most important parts of the Firefox security model and se... 2024-6-25 03:48:18 | 阅读: 18 | 收藏 | Attack & Defense - blog.mozilla.org nyx gcov processes dispatched security

Firefox will upgrade more Mixed Content in Version 127 Most of the web already supports HTTPS: In fact, 93% of requests made by Fire... 2024-6-5 21:5:31 | 阅读: 9 | 收藏 | Mozilla Security Blog - blog.mozilla.org mixed security responsive blockable upgraded

Rapidly Leveling up Firefox Security At Mozilla, we believe in an open web that is safe to use. To that end, we im... 2024-4-5 03:27:41 | 阅读: 8 | 收藏 | Mozilla Security Blog - blog.mozilla.org security pwn2own mozilla shipping ship

Mozilla VPN Security Audit 2023 Keep up with all things Firefox. Your e-mail address... 2023-12-7 01:0:37 | 阅读: 11 | 收藏 | Mozilla Security Blog - blog.mozilla.org mozilla okay

Version 2.9 of the Mozilla Root Store Policy Online security is constantly evolving, and thus we are excited to announce the publication of... 2023-9-14 01:56:32 | 阅读: 14 | 收藏 | Mozilla Security Blog - blog.mozilla.org mrsp mozilla cas security wiki

Updated GPG key for signing Firefox Releases The GPG key used to sign the Firefox release manifests is expiring soon, and so we’re going to... 2023-5-12 00:43:55 | 阅读: 17 | 收藏 | Mozilla Security Blog - blog.mozilla.org pgp gpg

Upgrading Mozilla’s Root Store Policy to Version 2.8 Keep up with all things Firefox. Your e-mail address... 2022-5-23 15:1:47 | 阅读: 20 | 收藏 | blog.mozilla.org mozilla okay

Revocation Reason Codes for TLS Server Certificates In our continued efforts to improve the security of the web PKI, we are taking a multi-pronged... 2022-5-16 23:0:8 | 阅读: 21 | 收藏 | blog.mozilla.org revocation 5280 cas crl validity

Preventing secrets from leaking through Clipboard For decades users have been pressing Ctrl+C or relying on copy buttons. All these tricks and s... 2021-12-15 19:24:20 | 阅读: 27 | 收藏 | blog.mozilla.org clipboard windows passwords pressing aspect

Improving the Quality of Publicly Trusted Intermediate CA Certificates with Enhanced Oversight and Automation In keeping with our commitment to the security and privacy of individuals on the internet, Mozi... 2021-12-10 01:00:50 | 阅读: 37 | 收藏 | blog.mozilla.org ccadb mozilla mrsp cas technically

WebAssembly and Back Again: Fine-Grained Sandboxing in Firefox 95 In Firefox 95, we’re shipping a novel sandboxing technology called RLBox — de... 2021-12-7 01:56:35 | 阅读: 6 | 收藏 | blog.mozilla.org webassembly rlbox memory sandboxing isolate

Finding and Fixing DOM-based XSS with Static Analysis Despite all the efforts of fixing Cross-Site Scripting (XSS) on the web, it c... 2021-11-3 17:37:3 | 阅读: 13 | 收藏 | blog.mozilla.org linter eslint analysis security sanitizer

Securing the proxy API for Firefox add-ons Add-ons are a powerful way to extend and customize Firefox. At Mozilla, we ar... 2021-10-26 02:04:33 | 阅读: 38 | 收藏 | blog.mozilla.org ons proxy mozilla defender ensuring

Securing Connections: Disabling 3DES in Firefox 93 As part of our continuing work to ensure that Firefox provides secure and pri... 2021-10-23 14:57:11 | 阅读: 25 | 收藏 | blog.mozilla.org 3des encryption security obsolete des

Firefox 93 protects against Insecure Downloads Downloading files on your device still exposes a major security risk and can... 2021-10-23 14:57:07 | 阅读: 35 | 收藏 | blog.mozilla.org download security sandboxed malicious annotated