W3C home > Mailing lists > Public > public-device-apis@w3.org > June 2016

Re: [sensors] Malicious use of the phone's Gyroscope

From: Rich Tibbett via GitHub <sysbot+gh@w3.org>
Date: Wed, 08 Jun 2016 08:23:36 +0000
To: public-device-apis@w3.org
Message-ID: <issue_comment.created-224521854-1465374215-sysbot+gh@w3.org>
I'm wondering if there are alternatives to simply putting orientation
behind opt-in permissions.

For example, if the spec explicitly states that orientation events 
must be
paused/suspended if the page, tab or browser is in the 'background' 
whether
this could alleviate the security concerns.

If the user must be directly interacting with the target web page and 
not
their bank, phone lock screen or any other service does the security
concern still exist?


-- 
GitHub Notification of comment by richtr
Please view or discuss this issue at 
https://github.com/w3c/sensors/issues/112#issuecomment-224521854 using
 your GitHub account
Received on Wednesday, 8 June 2016 08:23:40 UTC

This archive was generated by hypermail 2.3.1 : Monday, 23 October 2017 14:54:08 UTC