WebAPI Security Discussion: Contacts API

Lucas Adamski Thu, 26 Apr 2012 07:47:57 -0700

Name of API: Contacts API
Reference:https://wiki.mozilla.org/WebAPI/ContactsAPI


Brief purpose of API: Access to users contacts.
General Use Cases: 

Inherent threats: Access to confidential information, destroy user's data, 
upload contacts to site.  Denial of service by filling storage or obscuring 
real contacts in a ton of bogus contacts.
Threat severity: high

== Regular web content (unauthenticated) ==
Use cases for unauthenticated code: Access to users name to personalize 
interaction.
Authorization model for uninstalled web content: OS mediated (intents)
Authorization model for installed web content: OS mediated (intents)
Potential mitigations:
* System address app provides contacts back to requesting app

== Trusted (authenticated by publisher) ==
Use cases for authenticated code: Address book
Authorization model: Explicit
Potential mitigations: 
* Let user configure what data is accessible (globally?) 

== Certified (vouched for by trusted 3rd party) ==
Use cases for certified code: Built-in address book
Authorization model: Implicit
Potential mitigations: 

Notes:  

_______________________________________________
dev-security mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-security

WebAPI Security Discussion: Contacts API

Reply via email to