In May, the Open Technology Fund commissioned iSEC Partners to study current and future hardening options for the Tor Browser. The Open Technology Fund is the primary funder of Tor Browser development, and it commissions security analysis and review for all of the projects that it funds as a standard practice. We worked with iSEC to define the scope of the engagement to focus on the following six main areas:
Review of the current state of hardening in Tor Browser
Investigate additional hardening options and instrumentation
Perform historical vulnerability analysis on Firefox, in order to make informed vulnerability surface reduction recommendations
Investigate image, audio, and video codecs and their respective library's vulnerability history
Review our current about:config settings, both for vulnerability surface reduction and security
Review alternate/obscure protocol and application handlers
more here.........https://blog.torproject.org/blog/isec-partners-conducts-tor-browser-hardening-study
Review of the current state of hardening in Tor Browser
Investigate additional hardening options and instrumentation
Perform historical vulnerability analysis on Firefox, in order to make informed vulnerability surface reduction recommendations
Investigate image, audio, and video codecs and their respective library's vulnerability history
Review our current about:config settings, both for vulnerability surface reduction and security
Review alternate/obscure protocol and application handlers
more here.........https://blog.torproject.org/blog/isec-partners-conducts-tor-browser-hardening-study