While Mozilla Firefox and other products have been implemented with good security controls throughout the years, major improvement programs are planned for coming year:


QUOTE: We recently announced a reboot of our efforts to engage with security contributors at Mozilla. Today our strongest and most lasting contributor relationships are with individuals searching for bug bounties. While this program has been very successful, this model sets up a relationship where the only tangible contribution is a bug that may or may not result in a bounty. Instead we want to encourage growth in knowledge from those willing to learn, the creation of open source tools for security work and recognize the natural asymmetric challenges of an open source project that competes with closed source offerings. Three new areas of focus in 2013:

1. Contributor & Security Contributor

2. Security Champions

3. Security Mentors