Re: [mediacapture-record] Improvements to Privacy & Security Considerations (#196)

> Most [sources worth recording]( (camera, microphone, screen-sharing) are already `SecureContext` and require iframe `allow=`.ยน

I am not sure why third-party iframes should be singled out here.
If MediaRecorder needs to be fingerprinting mitigated, it should be done for first party as well as third party iframes.
For instance, nothing prevents a User Agent to strongly limit the available codecs statically (origins) or dynamically (gum called).

As of SecureContext, MediaStreamTrack, MediaStream, WebAudio, Canvas, video elements are not SecureContext for instance.

GitHub Notification of comment by youennf
Please view or discuss this issue at using your GitHub account

Received on Thursday, 2 July 2020 09:20:03 UTC