- From: Nan Lin <notifications@github.com>
- Date: Wed, 24 Jan 2024 07:24:10 -0800
- To: w3ctag/design-reviews <design-reviews@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
- Message-ID: <w3ctag/design-reviews/issues/724/1908353938@github.com>
こんにちは TAG-さん!
I’m requesting a TAG review of Cross App and Web Attribution Reporting API, which is an extension to the Attribution Reporting API.
This proposal expands the scope of attribution to allow attributing conversions that happen on the web to events that happen off the browser, within other applications.
* Explainer¹ (minimally containing user needs and example code): https://github.com/WICG/attribution-reporting-api/blob/main/app_to_web.md
* Specification URL: https://wicg.github.io/attribution-reporting-api/#cross-app-and-web
* Security and Privacy self-review: See below
* GitHub repo (if you prefer feedback filed there): https://github.com/WICG/attribution-reporting-api
* Primary contacts (and their relationship to the specification):
* John Delaney (@johnivdel), Google
* Organization/project driving the design: Google Chrome, Privacy Sandbox
* External status/issue trackers for this feature (publicly visible, e.g. Chrome Status): https://chromestatus.com/feature/4994430156668928
Further details:
* [✓] I have reviewed the TAG's [Web Platform Design Principles](https://www.w3.org/TR/design-principles/)
* The group where the incubation/design work on this is being done (or is intended to be done in the future): WICG currently, the proposal is also being discussed within PATCG
* The group where standardization of this work is intended to be done ("unknown" if not known): PATWG
* Existing major pieces of multi-stakeholder review or discussion of this design: N/A
* Major unresolved issues with or opposition to this design: N/A
* This work is being funded by: Google
We'd prefer the TAG provide feedback as (please delete all but the desired option):
🐛 open issues in our GitHub repo for **each point of feedback**
### **Security and Privacy Questionnaire**
This section contains answers to the [W3C TAG Security and Privacy](https://w3ctag.github.io/security-questionnaire/) [Questionnaire](https://w3ctag.github.io/security-questionnaire/).
1. What information might this feature expose to Web sites or other parties, and for what purposes is that exposure necessary?
This feature adds an additional fingerprinting vector letting web sites, and potentially third parties, know if the underlying platform supports attribution reporting, which is low entropy data.
The purpose of this feature is to allow events that happen on the web to be joinable with events that happen off the browser, within other applications, so it’s necessary to expose this information so that sites can configure their response headers for attribution.
2. Do features in your specification expose the minimum amount of information necessary to enable their intended uses?
Yes, we only expose possible web or OS-level support for attribution reporting.
3. How do the features in your specification deal with personal information, personally-identifiable information (PII), or information derived from them?
This API does not directly expose PII or personal information.
4. How do the features in your specification deal with sensitive information?
This API does not handle sensitive information.
5. Do the features in your specification introduce new state for an origin that persists across browsing sessions?
The web or OS support does not persist across browsing sessions, but cross app and web registrations may be persisted by the OS across browsing sessions.
6. Do the features in your specification expose information about the underlying platform to origins?
Yes, but no more than whether attribution is supported on web or OS-level .
7. Does this specification allow an origin to send data to the underlying platform?
Yes, it allows an origin to send one or more URLs that indicates a desire to use the underlying platform’s attribution API instead of the browser’s.
8. Do features in this specification enable access to device sensors?
No
9. Do features in this specification enable new script execution/loading mechanisms?
No
10. Do features in this specification allow an origin to access other devices?
No
11. Do features in this specification allow an origin some measure of control over a user agent’s native UI?
No
12. What temporary identifiers do the features in this specification create or expose to the web?
None.
13. How does this specification distinguish between behavior in first-party and third-party contexts?
Use of this feature in third party contexts requires a Permissions Policy: https://wicg.github.io/attribution-reporting-api/#permission-policy-integration
14. How do the features in this specification work in the context of a browser’s Private Browsing or Incognito mode?
The web or OS-support signal is still sent in Incognito mode, but the data is not passed to the underlying platform.
15. Does this specification have both "Security Considerations" and "Privacy Considerations" sections?
Attribution Reporting API specification has both sections: [Security Considerations](https://wicg.github.io/attribution-reporting-api/#security-considerations), [Privacy Considerations](https://wicg.github.io/attribution-reporting-api/#privacy-considerations).
Some discussions apply to this feature as well, and we will add additional information concerning this feature if necessary.
16. Do features in your specification enable origins to downgrade default security protections?
No
17. What happens when a document that uses your feature is kept alive in BFCache (instead of getting destroyed) after navigation, and potentially gets reused on future navigation back to the document?
Registrations that occur within the document will continue to be processed before and after the document enters the BFCache.
18. What happens when a document that uses your feature gets disconnected?
Registrations that occur within the document will continue to be processed before and after the document gets disconnected.
19. What should this questionnaire have asked?
N/A
--
Reply to this email directly or view it on GitHub:
https://github.com/w3ctag/design-reviews/issues/724#issuecomment-1908353938
You are receiving this because you are subscribed to this thread.
Message ID: <w3ctag/design-reviews/issues/724/1908353938@github.com>
Received on Wednesday, 24 January 2024 15:24:17 UTC