Re: Defenses against phishing via the fullscreen api (was Re: full screen api) from Florian Bösch on 2012-10-14 (public-webapps@w3.org from October to December 2012)

From: Florian Bösch <pyalot@gmail.com>
Date: Mon, 15 Oct 2012 01:07:04 +0200
To: Chris Pearce <cpearce@mozilla.com>
Cc: Maciej Stachowiak <mjs@apple.com>, Anne van Kesteren <annevk@annevk.nl>, "Carr, Wayne" <wayne.carr@intel.com>, "public-webapps@w3.org" <public-webapps@w3.org>
Message-ID: <CAOK8ODiaY6pBWvxyDC4gYbV=L_=XWKU3pxFn1oBBtfHzX_ueEg@mail.gmail.com>

On Mon, Oct 15, 2012 at 12:54 AM, Chris Pearce <cpearce@mozilla.com> wrote:

> I support making the spec general enough that implementors can chose their
> security features based on their requirements; what's appropriate for a
> desktop browser may not be appropriate for a tablet, for example.
>
An implementation, all implementations, should adhere to guaranteed modes
of behavior. Supporting a zoo of varying behaviors for the same
API/specification which cover the entire range from entirely unusable to
well usable makes supporting a given API really difficult for application
developers.

Received on Sunday, 14 October 2012 23:07:32 UTC