changeset
[mediaqueries-5][editorial] Separate Security and Privacy sections
Fri, 15 Nov 2024 16:04:43 -0500
- author
- Chris Lilley <[email protected]>
- date
- Fri, 15 Nov 2024 16:04:43 -0500
- changeset 31810
- c6a8a4dc8bc0
- parent 31809
- 71d57e12a2f7
- child 31811
- 5c56efc26c89
[mediaqueries-5][editorial] Separate Security and Privacy sections
| mediaqueries-5/Overview.bs | file | annotate | diff | comparison | revisions |
1.1 --- a/mediaqueries-5/Overview.bs Fri Nov 15 14:51:36 2024 +0100 1.2 +++ b/mediaqueries-5/Overview.bs Fri Nov 15 16:04:43 2024 -0500 1.3 @@ -3683,14 +3683,37 @@ 1.4 </pre> 1.5 </div> 1.6 1.7 -<h2 id=priv-sec class=no-num> 1.8 -Appendix B: Privacy and Security Considerations</h2> 1.9 +<h2 id=privacy class=no-num> 1.10 +Appendix B: Privacy Considerations</h2> 1.11 1.12 <em>This section is not normative.</em> 1.13 1.14 <div class="non-normative"> 1.15 1.16 - Issue: this section is incomplete 1.17 + Issue: this section is <a href="https://github.com/w3c/csswg-drafts/issues?q=is%3Aopen+is%3Aissue+label%3Amediaqueries-5+label%3Aprivacy-tracker">incomplete</a> 1.18 + 1.19 + The 'prefers-reduced-data' media feature 1.20 + may be an undesired source of fingerprinting, 1.21 + with a bias towards low income with limited data. 1.22 + 1.23 + The {{PreferenceManager}} object allows querying some user-preference [=media features=]. This 1.24 + is not a privacy leak, as that information is already trivially 1.25 + available by using [=media features=] themselves. 1.26 + 1.27 + The {{PreferenceManager}} object also allows overriding these user-preference [=media features=]; this 1.28 + is also neither a privacy nor accessibility regression, as the [=media features=] were already ignorable by simply 1.29 + not querying them. 1.30 + 1.31 +</div> 1.32 + 1.33 +<h2 id=security class=no-num> 1.34 + Appendix C: Security Considerations</h2> 1.35 + 1.36 + <em>This section is not normative.</em> 1.37 + 1.38 + <div class="non-normative"> 1.39 + 1.40 + Issue: this section is <a href="https://github.com/w3c/csswg-drafts/issues?q=is%3Aopen+is%3Aissue+label%3Amediaqueries-5+label%3Asecurity-tracker+">incomplete</a> 1.41 1.42 The 'display-mode' media feature allows an origin 1.43 access to aspects of a user’s local computing environment and, 1.44 @@ -3701,19 +3724,7 @@ 1.45 exploit the fact that an application is being displayed in fullscreen 1.46 to mimic the user interface of another application. 1.47 1.48 - The 'prefers-reduced-data' media feature 1.49 - may be an undesired source of fingerprinting, 1.50 - with a bias towards low income with limited data. 1.51 - 1.52 - The {{PreferenceManager}} object allows querying some user-preference [=media features=]. This 1.53 - is not a privacy leak, as that information is already trivially 1.54 - available by using [=media features=] themselves. 1.55 - 1.56 - The {{PreferenceManager}} object also allows overriding these user-preference [=media features=]; this 1.57 - is also neither a privacy nor accessibility regression, as the [=media features=] were already ignorable by simply 1.58 - not querying them. 1.59 - 1.60 -</div> 1.61 + </div> 1.62 1.63 <h2 id="changes" class="no-num"> 1.64 Changes</h2>
