Taxonomy of security and privacy extensions and features of the Firefox web browser with notes

I. Connection Security: How the browser connects to websites, ensures security of the transmission and privacy for the user.

  1. Firefox Networks Features: Firefox integrated security features at the network level (certificates, HTTPS padlock, NSS, Necko security, SmartBlock 3.0, HTTP Referrer Protections, Protection against insecure downloads).
  2. VPN/Proxies: VPN, encrypted and unencrypted proxy to mask the IP address of the user for the website.
  3. DNS over HTTPS: Use DoH instead of DNS.
  4.  HTTP to HTTPS: Convert URL from HTTP to HTTPS for a selection of services which are known as supporting HTTPS. (Also, some extensions try to see if HTTPS is supported and switch even on unknown websites).
  5. New TLS Version Enforcer: TLSv1.3 automatically enabled.

II. Content and Scripts Blockers: Systems that block contents for security, privacy reasons, or because it is the user choice.

  1.  Ads Blockers: Detect and block ads. Usually, it is only a JS script to not display ads. 2. Scripts and Malwares Blockers: Detect and block malwares and malicious scripts (JS, Flash, etc.), a particular subcategory concerns mining script blockers.
  2. Cookies and Local Data Storage Blockers: Block websites (Third-Party or tracking websites) to set cookies or to store tracking data in the browser local storage.
  3. Secure Downloads: Scan files which are downloaded and block them if there is malware inside, Block insecure HTTP downloads on a secure HTTPS page and in sandboxed iframe, Malware Detection in downloaded application file.
  4. Websites Blockers: Block a website or a domain.
  5. Ads Blockers Protectors: Some websites lock the content if an Ads Blocker is detected. Ads Blocker Protectors allow the user to keep their ads blocker on this kind of website.
  6. Security Suite (NoScript only): Detect XSS, CSFR, cross-zone DNS rebinding, etc. Very powerful.
  7. WebRTC Blockers: Block the WebRTC service because it can leak the real IP of the user. It should be used with a VPN service.

III. Cleaners: Tools that allow the user to automatically clean their browsing data. 1. History Cleaners: Clear History automatically according to the user settings. 2. Cookies Cleaners: Clear Cookies automatically according to the user settings.

  1. Cache Cleaners: Clear cache and data automatically according to the user settings.

IV. Browser Settings Controllers: Generic tools that give more control on the browser to the user.

  1. Cookies Cache History Proxy Managers: Instead of clearing cookies, cache, history and proxy automatically. The user is able to change these data or to allow some website and not some others. This is for manual customization.
  2. Browser Updates: Download and install the last version of the browser or its plugins (automatically or not).
  3. Session Lockers and Guest Sessions: This feature has been removed, it is recommended use Private Browsing (Create a fresh interface session on the Browser for public/family usage (no bookmark, no download, etc.).
  4. Secure Bookmarks: Create a secret folder in the bookmark which is only accessible with the correct password.
  5. Easy Security and Privacy Settings Managers: Security and privacy settings manager which allows the user to control easily their browser settings and features (grant the access to a specific feature, or not).

V. Authentication and Reputation: Systems that improve the security of browsing online and the authentication of the user.

  1. Passwords Managers: Store the user passwords. There are different kinds of Password Manager (generate strong passwords, access passwords everywhere, encrypt these passwords, automatically change some passwords, detect a breach or leak). Some addons allows for analysis of the stored passwords, helping to prevent password reuse.
  2. Reputation and Blacklists for Rogue Websites: Score website according to their reputation. Some of them are blacklisted and blocked (websites with malwares, or phishing websites). These features warn the user when a page he visits has been reported as a Deceptive Site, as a source of Unwanted Software or as a malware.
  3. Temporary Virtual Cards and Secure Payments: There is nothing about this topic.
  4. Third-Party Authentication Systems: Systems, like OTP, integrated in the Browser to perform 2FA or better authentication.

VI. Tracking/Privacy Protection: All the features that protect the information about the browser and the web browsing of the user (the aim is not to be identified).

  1. Privacy-based Search Engines: Set a privacy-based search engine by default. 2. Easy Privacy Settings Managers: Security and privacy settings manager which allows the user to control easily their browser settings and features (grant the access to a specific feature, or not).
  2. Cookies and Local Data Storage Blockers: Block websites (Third-Party or tracking websites) to set cookies or to store tracking data in the browser local storage.
  3. Tracking Parameters Link Cleaners: Remove Tracking parameters in URLs. 5. Containers/Sandboxes: Isolate the tab from the other. Cookies, indexedDB, localStorage and cache are not shared with the others (Behaviour equivalent to 2 different browsers).
  4. Cookies Cache History Cleaners: Auto delete cookies, Cache, History.
  5. Location: Browser behaviour regarding the location.
    1. Location Spoofers: Modify the location, or use VPN
    2. Location Blockers: Block a website to access the user location.
  6. Fingerprints: Browser behaviour regarding fingerprints.
    1. Fingerprinting Spoofers: Change Browser settings and behaviours which can be used to fingerprint a user.
    2. Fingerprinting Blockers: Fingerprinting scripts and website which are known as provider for these scripts are blocked by default
  7. Header Tracking Parameters: Browser behaviour regarding request headers and their parameters.
    1. Header Tracking Parameters Spoofers: Change User-Agent, referrer,
    2.  Header Tracking Parameters Blockers: Delete User-Agent, referrer (all the tracking parameters send in a request header).
    3. Header Do Not Track (DNT) Flag: Set the DNT flag in each request Header. 10. Local CDNs: Store content from CDN as a local copy to do not fetch it all the time it is required. Hence, CDN owners will not be able to track your browsing history. 11. Random Email Generators: Generate a temporary email address for 5 minutes in order to register in some website without any tracking through the email address. Firefox Relay allows the user to generate email aliases that forward to his real inbox.
  8. Cookies Cache History Managers: Allow (or block) Cookies, Cache, History for some website. Help to edit these parameters.
  9. WebRTC Blockers: Block the WebRTC service because it can leak the real IP of the user. It should be used with a VPN service.
  10. Policy Privacy (GDPR) Decoders: Inform the user if the website really respects your privacy (thanks to a mark). It can also automatically hide the “Policy Privacy Consent”.

VII. Others: Not Categorized.

  1. PGP Mails Encryption: This extension helps the user to encrypt a mail with PGP.
  2. TOR Solutions: The Onion Router project is based on Firefox. Some extensions allow the user to “Open a website in TOR”, or to use the OR network. However, these plugins need additional softwares to be installed in the computer. Special mention for “TOR Snowflake addon”.