You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
We have a clear requirement that (most) identifiers are per-origin and that persisted data must be clearable, but I don't believe there is a single place that says most values (Permanent Identifiers being the obvious exception), both persisted and not, must be per-origin and not be accessible or inferable by other origins.
Some references to #per-origin-identifiers (now #per-origin-per-profile-identifiers) may not actually be related to identifiers and should instead point to such a requirement.
I believe there are some references in the MediaKeys and/or MediaKeySessions sections, and the web platform relies on origins, but it is still worth making a clear statement and having a reference target that is not specific to identifiers.
The text was updated successfully, but these errors were encountered:
ddorwin
changed the title
Add statement that all values exposed or inferable by the application must be per-origin
Privacy: Add statement that all values exposed or inferable by the application must be per-origin
Jun 10, 2016
We have a clear requirement that (most) identifiers are per-origin and that persisted data must be clearable, but I don't believe there is a single place that says most values (Permanent Identifiers being the obvious exception), both persisted and not, must be per-origin and not be accessible or inferable by other origins.
Some references to
#per-origin-identifiers(now#per-origin-per-profile-identifiers
) may not actually be related to identifiers and should instead point to such a requirement.I believe there are some references in the
MediaKeys
and/orMediaKeySessions
sections, and the web platform relies on origins, but it is still worth making a clear statement and having a reference target that is not specific to identifiers.The text was updated successfully, but these errors were encountered: