W3C home > Mailing lists > Public > public-device-apis-log@w3.org > April 2017

Re: [ambient-light] Security and Privacy considerations for ALS

From: Lukasz Olejnik via GitHub <sysbot+gh@w3.org>
Date: Thu, 20 Apr 2017 19:29:39 +0000
To: public-device-apis-log@w3.org
Message-ID: <issue_comment.created-295871101-1492716578-sysbot+gh@w3.org>
We might include some additional information

> Cross-origin information flows. Ambient Light Sensor may be used to indirectly access information displayed on a device. In some cases this may allow information flows across origins or contexts, leaking sensitive data. 

Probably reconsider making the sensor subject to permissions?


-- 
GitHub Notification of comment by lknik
Please view or discuss this issue at https://github.com/w3c/ambient-light/issues/13#issuecomment-295871101 using your GitHub account
Received on Thursday, 20 April 2017 19:29:45 UTC

This archive was generated by hypermail 2.3.1 : Monday, 23 October 2017 12:18:53 UTC