[Bug 27165] New: User agents should warn users if they bring along unclearable identifiers from bugzilla@jessica.w3.org on 2014-10-24 (public-html-media@w3.org from October 2014)

From: <bugzilla@jessica.w3.org>
Date: Fri, 24 Oct 2014 21:38:57 +0000
To: public-html-media@w3.org
Message-ID: <bug-27165-5436@http.www.w3.org/Bugs/Public/>

https://www.w3.org/Bugs/Public/show_bug.cgi?id=27165

            Bug ID: 27165
           Summary: User agents should warn users if they bring along
                    unclearable identifiers
           Product: HTML WG
           Version: unspecified
          Hardware: PC
                OS: Windows NT
            Status: NEW
          Severity: normal
          Priority: P2
         Component: Encrypted Media Extensions
          Assignee: adrianba@microsoft.com
          Reporter: domenic@domenicdenicola.com
        QA Contact: public-html-bugzilla@w3.org
                CC: mike@w3.org, public-html-media@w3.org

As discussed in http://lists.w3.org/Archives/Public/www-tag/2014Oct/0106.html,
some DRM implementations---for Silverlight, at least---bring along
semi-permanent client IDs.

We should consider requiring or strongly recommending that user agents prompt
or inform the user if an EME implementation brings along identifiers that
cannot be cleared along with regular cookies and site data (similar to Mark’s
“more privacy sensitive than regular cookies” bar).

I will file a separate bug exploring whether we can require that such
identifiers be clearable, but we can use this bug to discuss mitigation
strategies if they must be unclearable for robustness reasons.

-- 
You are receiving this mail because:
You are on the CC list for the bug.

Received on Friday, 24 October 2014 21:38:58 UTC