-
Notifications
You must be signed in to change notification settings - Fork 7
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Privacy, Spec should call out that the API discloses user settings that is a fingerprinting vector. #24
Comments
This is a great question. As we know, every user-agent has different ways to handle blocking autoplay. Allowing autoplay on
There might still be more different situations depending on a user-agent's implementation. Considering so many different situations can happen on one result, I think it's very low risk that this API can be used for fingerprinting. |
For the reference, MediaWG had discussed this issue on March last year. In short, this API doesn't expose any new information to the web. It's just simplify how web developers can query the result without using different kind of workarounds. All the information they can know via the new API will be equal to what they can know now, which is performed by observing the media element's events and statues (eg. In addition, here is the privacy review I requested in case anyone is interested in. |
In the MediaWG minutes I posted above, the conclusion is that there is no major concern about privacy for this API, because web developers can use current existing media element API to get the same result. It's also hard to mitigate privacy concerns in all cases for media for the current existing API. Therefore, I'm going to mark this issue as closed. |
From https://www.w3.org/TR/security-privacy-questionnaire/#purpose
Does your feature expose information to origins? If so, how does exposing this information serve user needs? Are the risks to the user outweighed by the benefits to the user? If so, how?
With this API, we are exposing user preference that was set in the browser settings. This can contribute to fingerprinting. Is the risk outweighed by the benefits is something we should determine but the risk needs to be called out.
The text was updated successfully, but these errors were encountered: