Re: [w3ctag/design-reviews] Early Design Review: Opener Protections (Issue #916) from Ari Chivukula on 2023-11-16 (public-webapps-github@w3.org from November 2023)

From: Ari Chivukula <notifications@github.com>
Date: Thu, 16 Nov 2023 03:33:04 -0800
To: w3ctag/design-reviews <design-reviews@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <w3ctag/design-reviews/issues/916/1814267774@github.com>

A user is visiting a shopping site and trying to check-out. Before cookie/storage partitioning, trackers could detect a conversion in an iframe but now that's not possible. Now, they have an incentive to open a pop-up (with access to unpartitioned storage and cookies) and have the shopping site pass that pop-up (loading some tracking website) information about the conversion without needing user permission. @johannhof if I missed something

-- 
Reply to this email directly or view it on GitHub:
https://github.com/w3ctag/design-reviews/issues/916#issuecomment-1814267774
You are receiving this because you are subscribed to this thread.

Message ID: <w3ctag/design-reviews/issues/916/1814267774@github.com>

Received on Thursday, 16 November 2023 11:33:09 UTC