- From: Anne van Kesteren <annevk@annevk.nl>
- Date: Wed, 10 Sep 2014 11:29:40 +0200
- To: Stefan HÃ¥kansson LK <stefan.lk.hakansson@ericsson.com>
- Cc: "public-media-capture@w3.org" <public-media-capture@w3.org>
On Wed, Sep 10, 2014 at 11:08 AM, Stefan HÃ¥kansson LK <stefan.lk.hakansson@ericsson.com> wrote: > It is a long time ago, and I can't recollect all details on why we did > arrive on allowing http sites to access. I think it was a combination of > > a) follow the geoLocation example > b) the expressed wish to allow for secure communication when the app is > from untrusted sites (using PeerIdentity) - these perhaps temporary > sites could deliver over http a) set a bad precedent. I don't think we considered the implications at the time. I don't understand how b) is feasible. How can you communicate securely if the piece of software you just got could have been manipulated by a third party? -- http://annevankesteren.nl/
Received on Wednesday, 10 September 2014 09:30:12 UTC