Firefox 44 Debuts With Improved Security
Mozilla adds push notification support and provides 11 security advisories with its latest open-source browser release.Mozilla came out today with its first Firefox browser release for 2016, providing new features and hardened security. Firefox 44 follows Firefox 43, which was released Dec. 15 and provided improved tracking protection for users. With Firefox 44, Mozilla is adding in the ability for users to get push notifications from sites by making use of the Web Push W3C standard. "An application server can send a push message at any time, even when a webapp or user agent is inactive," the W3C standard abstract states. "Push messages are delivered to a Service Worker that runs in the origin of the webapp, which can use the information in the message to update local state or display a notification to the user." The Service Worker and Web Push APIs are part of Mozilla's overall push to enable a type of technology known as Progressive Web Apps. The basic idea behind Progressive Web Apps is to have the browser tooling in place that enables more interactive connectivity for Web pages.
From a security perspective with the Firefox 44 release, Mozilla has now deprecated support for the RC4 SSL/TLS (Secure Sockets Layer/Transport Layer Security) stream cipher. RC4 was once the most widely used SSL cryptographic cipher in use, but in recent years has been proven to be at risk from attack. Mozilla has been incrementally moving to remove RC4 support, since the Firefox 38 release in May 2015.