[Bug 25245] Specify "access" in the context of getMediaDevices from bugzilla@jessica.w3.org on 2014-04-07 (public-media-capture@w3.org from April 2014)

From: <bugzilla@jessica.w3.org>
Date: Mon, 07 Apr 2014 17:08:27 +0000
To: public-media-capture@w3.org
Message-ID: <bug-25245-5753-aF6cgETPi4@http.www.w3.org/Bugs/Public/>

https://www.w3.org/Bugs/Public/show_bug.cgi?id=25245

Martin Thomson <martin.thomson@gmail.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |martin.thomson@gmail.com

--- Comment #3 from Martin Thomson <martin.thomson@gmail.com> ---
(In reply to Ian 'Hixie' Hickson from comment #2)
> This is a fingerprinting vulnerability (it provides previously-unavailable
> unique bits to identify the user), and thus should be considered in a
> privacy context.

There has been a lot of thought put into this from a privacy perspective.  The
actual exposure is limited to a count of devices of each type, plus, if we
include "group" correlation of matched devices.

There's a tension here between usability and privacy.  I expect browsers to
include controls that allow a user to control this exposure.

-- 
You are receiving this mail because:
You are on the CC list for the bug.
You are the assignee for the bug.

Received on Monday, 7 April 2014 17:08:29 UTC