review of User Interface Security Directives for Content Security Policy from Cynthia Shelly on 2014-06-10 (public-pfwg@w3.org from June 2014)

From: Cynthia Shelly <cyns@microsoft.com>
Date: Tue, 10 Jun 2014 20:18:31 +0000
To: 'PF' <public-pfwg@w3.org>
Message-ID: <10532205178849399dae7143280451f7@BLUPR03MB166.namprd03.prod.outlook.com>

User Interface Security Directives for Content Security Policy
http://www.w3.org/TR/2014/WD-UISecurity-20140318/

There is a section on accessibility technologies (14.1) which touches on interoperability with assistive technolgies. I'm not familiar enough with the technology behind this spec to be able to determine if these cases have been handled.  More detail in 14.1, and perhaps some examples, would be welcome.

Some questions for the working group:

1)      Would an app using UI Security Directives be able to be operated by a cloud-based screen reader, such as Web Anywhere, which wraps a frame around all content it reads?  http://webanywhere.cs.washington.edu/

2)      Will the input protection heuristic work when a screen magnifier, such as Windows Magnifier or ZoomText is running on the machine?

3)      How will browser zooming impact the input protection heuristic?  What if the zoom occurs during the user interaction?

4)      Some assistive technology simulates mouse actions.  How will this impact UI Event Handling?

5)      Some assistive technology simulates user actions via platform accessibility APIs.  How will this impact UI Event Handling?

6)      Some assistive technology simulates user actions via the DOM.  How will this impact UI Event Handling?

Received on Tuesday, 10 June 2014 20:19:04 UTC