[Bug 26332] Applications should only use EME APIs on secure origins (e.g. HTTPS)

https://www.w3.org/Bugs/Public/show_bug.cgi?id=26332

--- Comment #33 from Glenn Adams <glenn@skynav.com> ---
(In reply to Joe Steele from comment #30)
> (In reply to Glenn Adams from comment #26)
> > (In reply to Ryan Sleevi from comment #25)
> > The spec will not place requirements on UAs with respect to how they choose
> > to support CDMs. If you would like to write another spec that does so, then
> > you may draft and submit it for consideration.
> 
> I don't think the W3C is the appropriate forum for that spec.

I wouldn't disagree, but that doesn't prevent someone from offering a draft
here.

> However I
> would like to be a party to that process if someone does start it. There are
> at least three APIs to choose from to date: Microsoft CDMi, Google Pepper
> CDM, Firefox GMP. 
> 
> However given that none of the UA vendors so far has indicated that they
> would allow a plugin written to these APIs to be accessed from the UA
> without some prior relationship with the UA vendor, I wonder about the value
> of such a spec.

That's a separate issue.

-- 
You are receiving this mail because:
You are the QA Contact for the bug.

Received on Tuesday, 19 August 2014 19:18:48 UTC