- From: Wendy Seltzer <wseltzer@w3.org>
- Date: Mon, 28 Mar 2016 15:53:42 -0400
- To: "public-privacy (W3C mailing list)" <public-privacy@w3.org>, Justin Uberti <juberti@google.com>
Hi PING and Justin, At the last PING call, I indicated I would look into Justin Uberti's IETF draft, https://tools.ietf.org/html/draft-ietf-rtcweb-ip-handling-01 The primary concern I had in the previous draft, a statement that IP information was being compared with mic/camera permissions and deemed less "sensitive," has been removed, and replaced with a more nuanced acknowledgment that privacy concerns may differ among differing users of the Web and rtcweb. Moreover, the document now recommends that IP address be included explicitly in the permission grant. Thanks, Justin! Overall, I think the document now strikes a reasonable balance between information flow-control and usability. It suggests that users should be able to configure preferences or extensions for even greater control. I'd welcome others' review whether the guidance still leaves too much scope for surprising privacy-invasive address-leakage. --Wendy -- Wendy Seltzer -- wseltzer@w3.org +1.617.715.4883 (office) Policy Counsel and Domain Lead, World Wide Web Consortium (W3C) http://wendy.seltzer.org/ +1.617.863.0613 (mobile)
Received on Monday, 28 March 2016 19:53:45 UTC