- From: Jeffrey Walton <noloader@gmail.com>
- Date: Tue, 16 Sep 2014 20:43:02 -0400
- To: "Hallvord R. M. Steen" <hsteen@mozilla.com>
- Cc: public-webapps WG <public-webapps@w3.org>
On Tue, Sep 16, 2014 at 5:30 AM, Hallvord R. M. Steen <hsteen@mozilla.com> wrote: >... if we get it right we've enabled some more functionality > for web apps without too much nuisance and abuse - > if we get it wrong, we probably have to revisit this and > lock it down with site whitelists and such. Keeping in mind > that Flash has had similar policies for a while ... It seems to me that considering Flash and security is like apples and oranges. The company responsible for Flash is not exactly known for being a pillar in the security community. I'm not sure its useful to claim "Flash does it, so it must be {OK|secure|best practice|...}". If a comparison was made between Flash and utility, then that would be a different story. Flash would probably make a good study of use cases.
Received on Wednesday, 17 September 2014 00:43:29 UTC