FW: Update on TAG F2F & Privacy Principles


Could someone point me to the Private State Tokens outcome?

Since I messaged Dan, Don Marti has posted the Privacy Principles on issue #224 (https://github.com/w3ctag/privacy-principles/issues/224). I suggest Andy Updegrove is involved when you are ready for review and a virtual F2F arranged to go through the points.



-----Original Message-----
From: James Rosewell
Sent: 02 March 2023 18:37
To: Daniel Appelquist <dan@torgo.com>
Subject: RE: Update on TAG F2F & Privacy Principles

Hi Dan,

Where would someone find the outcome of the TAG design review concerning Private State Tokens?

The obvious issue #780 does not provide a link to the outcome.


In relation the privacy principles, Movement for an Open Web (MOW) have commented on the document. Please see the attached document. Could you please post this document to GitHub on behalf of MOW now that public comments are being invited?



-----Original Message-----
From: Daniel Appelquist <dan@torgo.com>
Sent: 24 February 2023 11:47
To: W3C AC-Forum <w3c-ac-forum@w3.org>; W3C Chairs <chairs@w3.org>
Subject: Update on TAG F2F & Privacy Principles

Hi W3C Friends!

I'd like to give you a brief update on the activities of the Technical Architecture Group. We've been working on design reviews as well as updates to some of our core documents. And the work of the Privacy Principles task force has reached a milestone where we feel the document is ready for wider review, from both inside and outside of W3C.

Firstly, an update from our last virtual F2F meeting: we held a virtual F2F the week of 30-Jan (designated "Moonbase Alpha" as we are holding these virtual meetings "in" fictional cities). For those interested, our method for holding these virtual meetings is to create a schedule of 18 breakout sessions over 3 time zone groups over the course of 3 days. This allows us to run multiple sessions in parallel at times that are convenient for the TAG's members. If anyone in the community would like to learn more about our virtual F2F process please get in touch and I'd be happy to answer any questions.

The TAG closed 12 design reviews in this meeting (see our Agenda[1] for links to each of these issues):

Private State Tokens (formerly Trust Tokens) Autoplay Policy Detection AP Storage Access API No-Vary-Search HTTP header Pre-CR review: DOM Review Draft
FedCM multi IDP support
WebAuthn PRF extension
Two changes to Secure Payment Confirmation prior to CR Collection of Screensharing-related UX Hints FYI - Add optional submitter parameter to the FormData constructor Early design review for Range API improvements

In addition, the TAG made updates to the design principles document[7]: changing guidance about dictionaries to cover all optional arguments and adding a new principle for sync() vs async().

The TAG inaugurated a new guidance document on Back/Forwards Cache[3] (thanks to contributor Rakina Zata Amni from Google and thanks also to Domenic Denicola from Google and Anne van Kesteren from Apple for their reviews of this material). We welcome community feedback in this area. We also updated material in Security & Privacy Questionnaire on BF Cache.[4]

The TAG left substantive feedback on a number of ongoing design reviews, notably the review for MiniApp Lifecycle.[5]

We also updated our TAG work mode document[6] to provide more transparency about how the design review process works, including how we “triage” new reviews and how we use labels and milestones during the course of reviews.

The agenda/summary[1] and minutes[2] for this F2F are available in the TAG repository.

Separately, the TAG Privacy Task Force[8] has been working hard on developing a set of Privacy Principles[9] for the web. Now we're ready for this document to get some wide review from the W3C community and from external communities as well.

The Privacy Principles seeks to set down some definitions of key privacy concepts and principles that the web platform as a whole should adhere to. As this is a document of the TAG, we're specially trying to address the community of people developing new specifications for the web platform. The intention is to eventually publish this document as a W3C Statement. We welcome your feedback on the document. I would like to encourage you to leave that feedback as issues, or comments on issues, in the appropriate repository (as linked from the document). We'd like comments before the end if April if possible. I'd like to thank the members of the privacy task force (Robin Berjon, Nick Doty, Amy Guy, Don Marti, Jonathan Kingston, Theresa O'Connor, Christine Runnegar, Wendy Seltzer, Pete Snyder, Sam Weiler and Jeffrey Yasskin) for their time and effort as we continue this important work.

Dan Appelquist
Co-Chair, W3C Technical Architecture Group W3C Invited Expert

1. https://github.com/w3ctag/meetings/tree/gh-pages/2023/01-moonbase-alpha

2. https://github.com/w3ctag/meetings/blob/gh-pages/2023/01-moonbase-alpha/minutes.md

3. https://w3ctag.github.io/bfcache-guide/

4. https://github.com/w3ctag/security-questionnaire/pull/144

5. https://github.com/w3ctag/design-reviews/issues/523#issuecomment-1427697804

6. https://tag.w3.org/workmode/

7. https://www.w3.org/TR/design-principles/

8. https://github.com/w3ctag/privacy-principles

9. https://www.w3.org/TR/privacy-principles/

This email and any attachments are confidential and may also be privileged. If you are not the named recipient, please notify the sender immediately and do not disclose, use, store or copy the information contained herein. This is an email from 51Degrees.mobi Limited, Davidson House, Forbury Square, Reading, RG1 3EU. T: +44 118 328 7152; E: info@51degrees.com; 51Degrees.mobi Limited t/as 51Degrees.

Received on Sunday, 19 March 2023 09:39:00 UTC