Re: [w3ctag/design-reviews] Early design review: Document Picture-in-Picture (Issue #798)

> The spoofing section is giving hints and should use stronger wording to avoid, for example, payment website spoofing, or as stated in the document System UI used to gather user passwords. Having PiP restricted to video was enough to avoid this issue, but opening it up to be any document leads to need to care about security/spoofingin a normative way.

That makes sense. I've updated the spec to have normative language around spoofing prevention

-- 
Reply to this email directly or view it on GitHub:
https://github.com/w3ctag/design-reviews/issues/798#issuecomment-1530371883
You are receiving this because you are subscribed to this thread.

Message ID: <w3ctag/design-reviews/issues/798/1530371883@github.com>

Received on Monday, 1 May 2023 21:55:43 UTC