-
Notifications
You must be signed in to change notification settings - Fork 14
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
actionability through a decision tree or other #13
Comments
Attempting to address this through: |
I vote strongly for more actionable guidance too. Guidelines / "rules" like:
would be very useful, both hopefully in future standards, but also to browser vendors in deciding whether to implement |
…sive fingerprinting surface and 2) narrow scope and availability, including with permission prompts * note permission prompts as mitigation #21 * add example of Media Capture permissions for media device labels * add a separate best practice for server-side opt-in on HTTP requests, as a kind of experimental option, with Client Hints design as the example * make a clearer, numbered action list (removed issue box #13) * removed a note/question box in privacy impacts
I've tried to make the steps to follow in identifying surface, evaluating severity and applying mitigations more concrete. @snyderp I think rules of that form could definitely be useful, but I'm not aware of any agreement on them. I don't know of any browsers that are gating CSS media queries or fonts behind user permission prompts and I'm not aware of a good UI for permissions that would explain that; this doc does note permissions as a possible mitigation. Noting local state and clearing it all at once is described in this document, and you can let me know if there's a way to make it clearer. |
@npdoty I appreciate your comments above, but they leave me unsure what the goals of this document are. If the goal is to highlight concerns, then issues about UI and what browsers are currently doing seem unrelated. If the goal is to prescribe certain actions, then it seems the whole thing should should be more direct and forceful. In general, maybe it would be better to fold this effort into the PING privacy questionaire? |
@snyderp the goals of this document are to provide authors of specifications, designers of new web features and people reviewing those specs and features, guidance on how to identify and mitigate privacy risks that arise through browser fingerprinting. In order to provide best practices, it's useful to be able to provide guidance and techniques that are used in the wild or that we can confidently recommend, which is why I think adoption and UI concerns are relevant. I would welcome any suggested changes to make this document more forceful about design decisions that are recommended. We've definitely talked in the past about folding this into the privacy/security questionnaire and I've been open to that possibility. As both this document and the questionnaire have gotten longer and more involved, I'm not sure combining them is as promising now. |
Will open separate issue regarding providing a reference to current privacy/security questionnaire which also provides actionable guidance. |
w3ctag/design-reviews#38 (comment)
Expanding on the request for actionability, one suggestion is to make an explicit decision tree or more direct list of mitigations, so that a team using this document would know the kind of changes necessary to follow these best practices.
We might also try this out with a WG, or on our own with a couple of specs, and see what the direct changes would be.
The text was updated successfully, but these errors were encountered: