Mozilla dumps Firefox 3.7 from schedule, changes dev process
Plans to quicken development pace by adding some features via security updates
Computerworld - Mozilla has made major changes to how it develops Firefox, and plans to drop Firefox 3.7 from its schedule and instead roll out incremental changes throughout the year, a company executive said today.
Rather than add features to Firefox only in once- or twice-a-year upgrades, Mozilla will quietly insert some functionality via its regular security updates, which appear every four to six weeks, said Mike Beltzner, director of Firefox, in an interview Thursday.
That means Firefox 3.7, which was slated for a second quarter release, has been dropped from the development schedule, said Beltzner. The next version of the open-source browser after the almost-ready Firefox 3.6 will be an as-yet-unnamed update at the end of this year or in early 2011.
Last year, Mozilla said it would release a pair of fast-track updates, dubbed Firefox 3.6 and Firefox 3.7, that were to take about four or five months each to get out the door. Those so-called "minor updates" would then be followed by Firefox 4.0, a "major update" slated for the last quarter of 2010.
But based on the work on Firefox 3.6, Mozilla's changed its mind.
"I'm proud of how we challenged ourselves," said Beltzner, referring to the quick-strike schedule that Mozilla plotted out for Firefox 3.6, but didn't meet. Mozilla had slated Firefox 3.6 for a November 2009 release, but pushed back the ship date as it worked out bugs and added additional beta builds to the cycle. Firefox 3.6 reached the "release candidate" (RC) stage last week, and should wrap up before the end of this month.
"We learned an awful lot about what slows down our schedule, and that will help us plan future releases," Beltzner said.
In fact, the lessons from Firefox 3.6 led Mozilla to decide to can a release between now and the end of the year, the version previously tagged as Firefox 3.7. Instead, Mozilla will add behind-the-scenes capabilities to Firefox as part of the security updates it does on an irregular schedule every four or more weeks.
Mozilla's developers have been discussing that approach in various mailing lists for some time, and have codenamed the first such update as "Lorentz."
"The first target for [a minor update] will be separation of plug-in processes from the browser," said Beltzner. Mozilla is already working on a project, called "Electrolysis" where Firefox will run each tab as a separate process. The idea is to prevent a single site running in one tab from crashing the entire browser. Google's Chrome, for example, already has this capability.
Rather than wait to complete the entire Electrolysis project, Mozilla will instead separate the processes of specific plug-ins -- Adobe's Flash is the lead candidate -- so that if the plug-in crashes, Firefox itself isn't brought to its knees. According to Beltzner, Flash is responsible for more Firefox crashes than any other plug-in.
- How Network Connections Drive Web Application Performance Users around the globe, on all sorts of devices, expect Web applications to function as seamlessly as desktop applications. This paper discusses the...
- Big Data, Big Mess: Sound Risk Intelligence Through Complete Context This paper examines the insecurity of the small businesses in the supply chain and offers tips to close those backdoors into the enterprise.
- Using Cyber Insurance and Cybercrime Data to Limit Your Business Risk This paper examines the challenges of understanding cyber risks, the importance of having the right cyber risk intelligence, and how to use this...
- 5 Tips to Secure Small Business Backdoors in the Enterprise Supply Chain This paper examines the insecurity of the small businesses in the supply chain and offers tips to close those backdoors into the enterprise.
- Live Webcast How to serve up a Grand Slam with a scalable IT Infrastructure for cloud, big data and advanced analytics Register today to attend this webcast, and see examples of how The U.S. Tennis Association, Wimbledon and U.S. Golf Association are using the...
- Live Webcast Security Vulnerabilities Associated With Having Local Administrator Privileges Viewfinity will demonstrate how removing admin rights and granularly managing privileges at the application level reduces the attack surface.
- Live Webcast IBM FlashSystem V840: Leveraging Software-Defined Flash to Drive Your Business With end-to-end, tightly integrated functionality and super-fast flash technology, products like IBM FlashSystem V840 Enterprise Performance Solution empower businesses to leverage the efficiency...
- NSS Labs & Cisco Present: Evaluating Leading Breach Detection Systems Today's constantly evolving advanced malware and APTs can evade point-in-time defenses to penetrate networks. Security professionals must evolve their strategy in lockstep to...
- Will the Real Endpoint Threat Detection and Response Please Stand Up? This webinar explores new technologies & process for protecting endpoints from advanced attackers as well as the innovations that are pushing the envelope...