W3C home > Mailing lists > Public > public-browser-tools-testing@w3.org > October to December 2013

[WebDriver] Implementation security issues

From: Tobie Langel <tobie@w3.org>
Date: Mon, 28 Oct 2013 10:13:28 +0100
To: public-browser-tools-testing@w3.org
Message-ID: <D4DAA6184C94460082444373B618503D@w3.org>
Hi folks, 

I've been evangelizing WebDriver for W3C's user agent testing effort. The biggest concern I've heard so far is around security. The TV industry in particular is worried this could be used to subvert a user's TV set.

It would be extremely useful to either have a (non-normative) section on security within the spec, describing the potential security risks (including social engineering) and mitigation strategies, or have such a document hosted elsewhere to which I could point to when security is brought up as a concern.

Case studies on how the security concerns have been resolved in shipping implementations would also be tremendously useful.

Let me know if there's anything I could help with here.


Received on Monday, 28 October 2013 09:11:59 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 19:09:49 UTC