Now, anyone can use JavaScript fuzzer from Mozilla and it would be followed by fuzzer for the HTTP and FTP protocols. The Mozilla Foundation has launched several open source security testing tools, in addition to several security enhancements coming with Firefox 3.0 to improve browser security. The company is planning to ship this updated Firefox by the end of this year.
The final version of Firefox 3.0 will automatically lock sites, which are suspected of harboring malware. The web browser will also support the extended validation Secure Sockets Layer (EV SSL) certificates. The company is already using an open source security testing tool, known as a fuzzer for JavaScript to detect and fix dozens of security bugs in Firefox.
The new Firefox 3.0 supports the new EV certificates, which is used by few of the largest online retailers, banks and financial institutions. The certificate which uses Microsoft Corp.’s Internet Explorer (IE) browser trigger changes color of the address bar into green, requires more extensive background checks in the address bar to guarantee that they are given only to trustworthy sites.
According to Mozilla Project co-founder, Mike Shaver the open source browser will display an agent like character, named ‘Larry’ when it reaches a domain equipped with a EV. The company is hoping this proactive approach to security will alleviate the need for such incremental browser updates.
The company has already worked with Microsoft, Apple, and Opera before making the JavaScript fuzzer in order to reduce the possibility that the tool can expose vulnerabilities in those browsers. All of these leading browser vendors have reviewed the tools and told Mozilla to release the tool.
Image Credit: ROL
Via: Wired Blog
