W3C home > Mailing lists > Public > public-webrtc-logs@w3.org > July 2019

Re: [mediacapture-main] fixed, per origin, device ID creates tracking risk (#607)

From: pes via GitHub <sysbot+gh@w3.org>
Date: Tue, 09 Jul 2019 19:58:56 +0000
To: public-webrtc-logs@w3.org
Message-ID: <issue_comment.created-509785439-1562702335-sysbot+gh@w3.org>
Helllo @youennf :

Not sure I follow the above messages.

#598 seems to have concluded that no change is needed, and I don't see anything in the spec at all about double keying anything.  "the spec is not forbidding [the fix] but is not enforcing it either" is not a solution to the problem introduced by the spec :) 

Re: "FWIW, that is what is implemented in Safari." Great!  If this is the correct solution to the privacy harm introduced by the spec, it needs to be in the spec though.  Its not sufficient to clearly define the privacy harming behavior in the spec, but leave the mitigations vague and unspecified.

I don't understanding how #549 mitigates tracking.  Would you mind explaining further?

-- 
GitHub Notification of comment by snyderp
Please view or discuss this issue at https://github.com/w3c/mediacapture-main/issues/607#issuecomment-509785439 using your GitHub account
Received on Tuesday, 9 July 2019 19:58:58 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 19:22:25 UTC