-
Notifications
You must be signed in to change notification settings - Fork 44
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Reduce fingerprinting related to Web payments #176
Comments
The Privacy IG (PING) is looking at ways to reduce fingerprinting surface. We're starting with font enumeration. I encourage joining PING. Workshopping would be good once we collect a motivated group of people. Who do you think should be involved? |
I want to note that the Web Payment Security IG is holding conversations on this topic. |
I've narrowed the focus of this particular issue to Web payments (e.g., 3-D Secure and risk assessment) |
There were some interesting discussions about this at the WPSIG mtg at TPAC2019. Fingerprinting, more generally, was discussed in an invite-only workshop in early September 2019. |
WPSIG and PING have begun conversations about how emerging technologies (e.g., trust tokens, EATs, token binding, and possibly others) could help address this issue. |
Secure Payment Confirmation seems to be the proposed approach to this need - it probably ought to be considered in incubation or evaluation at this stage |
SPC might play a role here, but it is not yet clear that it will in the following sense:
|
A new AntiFraud CG may contribute to progress on this. |
The Antifraud CG will discuss some of its emerging proposals [1] at TPAC 2022 in a joint meeting with WPWG, WPSIG, and WebAuthn. |
Hi all,
Can we find ways to reduce (JavaScript in particular) fingerprinting? Should we have a workshop on this?
Ian
The text was updated successfully, but these errors were encountered: