- From: Jake Archibald <notifications@github.com>
- Date: Fri, 29 Jul 2016 07:51:48 -0700
- To: whatwg/storage <storage@noreply.github.com>
Received on Friday, 29 July 2016 14:52:20 UTC
F2F: * We're going with a combination of bucketing and randomisation to reduce the usefulness of this attack to the level of a timing attack * This needs to be a high priority fix * We should add some non-normative spec test to instruct UAs to do similar things here, but having browsers do it slightly differently reduces the ability to attack --- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/whatwg/storage/issues/31#issuecomment-236201727
Received on Friday, 29 July 2016 14:52:20 UTC