Re: [csswg-drafts] [css-fonts] incorporate mitigations for font based fingerprinting (#4055) from pes via GitHub on 2019-10-15 (public-css-archive@w3.org from October 2019)

From: pes via GitHub <sysbot+gh@w3.org>
Date: Tue, 15 Oct 2019 19:38:38 +0000
To: public-css-archive@w3.org
Message-ID: <issue_comment.created-542371873-1571168316-sysbot+gh@w3.org>

Here is another strawman proposal to try and move things forward:

What if the standard didn't put any limitations on what the page could access as local fonts, but required local fonts to be *specifically, intentionally* loaded into the browser, instead of defaulting to any and all fonts it could find. 

That would seem to both solve the problem of some users wanting additional fonts, but also address significant, in the wild, problem of people being fingerprinted because of things they did on their system completely unrelated to their browser.

WDYT?

-- 
GitHub Notification of comment by snyderp
Please view or discuss this issue at https://github.com/w3c/csswg-drafts/issues/4055#issuecomment-542371873 using your GitHub account

Received on Tuesday, 15 October 2019 19:38:40 UTC