Mozilla includes several projects related to security:
- Open Source PKI Projects. Main home page for all
open source public-key infrastructure (PKI) projects, including:
- Network Security Services (NSS). Project for supporting cross-platform development of security-enabled server applications. Applications built with NSS can support PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, TLS, SSL v2 and v3, X.509 v3 certificates, and other security standards.
- Network Security Services for Java (JSS). A Java interface to NSS that supports most of the security standards and encryption technologies supported by NSS. JSS also provides a pure Java interface for ASN.1 types and BER/DER encoding.
- Python Binding for NSS (python-nss). A Python language binding for NSS and NSPR which provides a Python programmer access to the NSS and NSPR API suite in a programmer friendly "Pythonic" manner.
- X.509 v3 Certificate Store. NSS ships by default with a set of root certificates. This page details how this store is managed.
- Policy for Handling Security Bugs. Guidelines
on how to report security vulnerabilities and how the Mozilla community will deal with them.
- Current Members of the Mozilla security group.
- Known Vulnerabilities. List of known security weaknesses in various versions of Mozilla.
- Top Level Domains for which we permit Internationalized Domain Names, with links to the relevant registry policies.
