- From: Nathan Parker via GitHub <sysbot+gh@w3.org>
- Date: Wed, 19 Aug 2015 23:58:57 +0000
- To: public-web-nfc@w3.org
I think reading same-origin tags with an "ask forgiveness" rather than "ask permission" model is a reasonably small privacy cost for a gain in usability. e.g. Suppose www.popularsocialnetwork.com pays restaurants to embed tags in their tables. People who are commonly on that site all the time put their phone on the table, and leak their location. If this happened once and the user was notified and could disable further tag reading, the harm would be limited. I think different-origin should require a permissions since it has potential to leak a lot more info. -- GitHub Notif of comment by ngparker See https://github.com/w3c/web-nfc/issues/3#issuecomment-132829398
Received on Wednesday, 19 August 2015 23:58:58 UTC