APA WG comment: fingerprinting of assistive technology users? #306
Comments
|
Trace Context defines two headers:
Specific to your question about the possibility of browser fingerprinting, I'd like to add that the generation of those headers happens on the server-side when a request hits the backend and not in the browser. Please let me know if this addresses your concerns. |
|
@michael-n-cooper Does this answer your concern? |
AloisReitbauer
added
accessibility
|
Thanks for the response, and sorry I missed the original reply a couple weeks ago. APA is discussing this, we think the response is helpful but are mulling whether there's anything substantive we thing should be addressed. I expect a final response next week. |
|
Thanks, in 17 July 2019 APA WG discussion the APA WG agrees that, while there is a possible concern for privacy, it does not come from this specification. From an APA perspective this comment is addressed. |
Apologies for sending this comment after CR, it came from review of an earlier draft. This is a question from the APA Working Group, but if there is a possibility of fingerprinting in the manner described, there could be need for additional action in the specification.
The Accessible Platform Architectures (APA) Working Group has reviewed the First Public Working Draft of the Distributed Tracing specification:
https://www.w3.org/tr/2018/wd-distributed-tracing-20181106/
Our review raised a concern: We want to confirm with you that a user will not be fingerprinted as a person with some disability as a consequence of that person using an assistive technology. Our concern is based on the fact that certain assistive technologies use accessibility APIs to provide access to the web applications, such as the accessible name and/or current value of a widget. Can you please help us understand how this user's privacy would be protected in this situation?
The text was updated successfully, but these errors were encountered: