How Firefox Sync keeps your data safe even if TLS fails

Firefox, Mozilla Account Firefox, Mozilla Account 最終更新日時: 3週間 ago 100% のユーザーがこの記事が役立だったと投票しています
この記事はまだ翻訳されていません。すでに SUMO のローカライズ方法を知っている場合は、この記事を翻訳してください。SUMO の記事を翻訳する方法を学びたい場合は、記事翻訳の手引きをご覧ください

With so many stories popping up in the news around data leakage these days, you may be wondering if your Firefox Sync data is safe. No need to worry as Firefox Sync contains additional layers of security.

How Sync works

  • Firefox Sync ensures that your data is encrypted before it ever leaves your device, and that the password to unlock this encryption is never transmitted to the server. This is done by applying some cryptographic hashing to your Mozilla account password to strengthen it when you enter it, and deriving the authentication and encryption keys.
  • The authentication key is transmitted to the server to prove that you own the account. If Transport Layer Security (TLS) fails, this might cause the authentication key to be leaked, and someone who intercepts this key could use it to authenticate into your account. However, they can’t use it to access your Firefox Sync data since the encryption key is used to encrypt your data before it leaves your device. This key is never transmitted to the server, so it can’t be leaked if TLS fails.
  • Firefox Sync uses the account password to build an additional layer of security and encryption on top of what’s provided by TLS. Therefore, we can’t even access your Firefox Sync data and don’t rely on the confidentiality of TLS to keep your data safe. For technical details regarding how the entire process works, see Private by Design: How we built Firefox Sync.

The stronger your password, the more protection this scheme can offer. That’s why it’s important to choose a secure password for your Mozilla account.

この記事は役に立ちましたか?

しばらくお待ちください...

以下の人々がこの記事の執筆を手伝ってくれました:

Illustration of hands

ボランティア

あなたの専門知識を成長させ、他の人と共有してください。質問に答えたり、ナレッジベースを改善したりしてください。

詳しく学ぶ