Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Seek privacy-protecting solutions #30

Open
samuelweiler opened this issue Dec 2, 2020 · 5 comments
Open

Seek privacy-protecting solutions #30

samuelweiler opened this issue Dec 2, 2020 · 5 comments
Assignees
@DanDruta
Labels
privacy-needs-resolution Issue the Privacy Group has raised and looks for a response on.

Comments

@samuelweiler
Copy link
Member

I would like to see the IG exploring - and pushing for - solutions that minimize fingerprinting surface or make the fingerprinting more detectable, where possible.

Examples include:

Specifically I propose expanding the "Identify opportunities" task to include the above text (or some reasonable variant), or perhaps add a new bullet item under tasks. In any case, the IG should have the task to seek privacy-protecting solutions.

"Exposure of aggregated web metrics" could be quite problematic - using a person's browser for "troubleshooting and monitoring" of a web application is arguably is a misappropriation of the person's resources. As I said when reviewing the Web Performance WG charter, such functions should not be enabled by default - they should be exclusively for use in test farms or when enabled for a specific debugging session. Accordingly, I would prefer to see this item either limited to "things that can be reported through a privacy-preserving system such as Prio" or removed from the IG's scope. If it is left in as-is, it needs to be with the understanding that there will be pushback on standardizing such functionality. @pes10k in case he has further comment.
@samuelweiler samuelweiler added the privacy-needs-resolution Issue the Privacy Group has raised and looks for a response on. label Dec 2, 2020
@samuelweiler samuelweiler mentioned this issue Dec 2, 2020
Closed
1 task
@sudeepdi
Copy link
Collaborator

sudeepdi commented Dec 2, 2020
edited
Loading

Thanks @samuelweiler for the inputs. Very pertinent information to include in the draft. Just to add, some of this was discussed a bit at TPAC 2019, where we put together some guiding principles for the IG as we explore new solutions. Adding a link to that here for reference https://www.w3.org/2019/07/31-web-networks-PrinciplesForWebNetworks.pdf

@w3cbot w3cbot mentioned this issue Dec 2, 2020
Closed
@sudeepdi sudeepdi mentioned this issue Jan 28, 2021
Merged
@dontcallmedom
Copy link
Member

#35 highlights the need for taking privacy into account when looking at network metrics - @samuelweiler does it address your concern?

@dontcallmedom
Copy link
Member

haven't heard back anything, closing

@samuelweiler
Copy link
Member Author

#35 highlights the need for taking privacy into account when looking at network metrics - @samuelweiler does it address your concern?

Partially, maybe? As above "the IG should have the task to seek privacy-protecting solutions", and I'd like to see that be more explicit in the charter.

@samuelweiler samuelweiler reopened this Mar 29, 2021
@dontcallmedom
Copy link
Member

@samuelweiler the charter has been under AC review for the past 4 weeks now, so I don't think we're in a position to bring further changes at this stage.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@DanDruta DanDruta

Labels
privacy-needs-resolution Issue the Privacy Group has raised and looks for a response on.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@dontcallmedom @DanDruta @samuelweiler @sudeepdi