- From: Chris Griffin <notifications@github.com>
- Date: Tue, 04 Feb 2020 07:20:13 -0800
- To: w3ctag/design-reviews <design-reviews@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Tuesday, 4 February 2020 15:20:17 UTC
> If usage statistics and crash reports are disabled, this number is chosen between 0 and 7999 (13 bits of entropy) This is a misdirect. First, according to the same cited [whitepaper](https://www.google.com/chrome/privacy/whitepaper.html), Usage statistics are "enabled by default for Chrome installations of version 54 or later". This means that nearly all Chrome installs will have a very high entropy. And even if a user disables usage statistics, a low entropy seed will very likely still yield a high entropy string since it includes "the state of the installation of Chrome itself, including active variations, as well as server-side experiments that may affect the installation." If you want to use this argument, the equivalent would be allow users to disable their User Agent, but to send it by default. This seems like a much more sane approach. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/w3ctag/design-reviews/issues/467#issuecomment-581959629
Received on Tuesday, 4 February 2020 15:20:17 UTC