Hi Ryosuke, The two points you are mentioning make sense to me.
> ** > > For starters, most of users wouldn't even know what a local network is; > let alone what discovering media sources, etc... mean. > Most users may not be able to understand what means “discover local network DACP servers”. But if a user is requested to grant/deny access to “Bob music library” service (the service being a DACP server), the situation seems getting better. The spec is a work in progress and may be improved. > It's also a very good way to finger-print users. How many users have > the same set of speakers, etc... let alone the same set of media contents. > **** > > ** > That is a valid point. Fingerprinting based on the information gathered by the discovery process may be adjusted. In particular, one may minimize the exposure to web applications of the information gathered from the discovery scan. Fingerprinting based on XHR exchanges with granted local services seems more difficult to defeat. Note though that the fingerprinting web application would need to be granted access to the same service each time it wants to fingerprint the user. This probably makes it less appealing than existing strategies such as JS/canvas-based fingerprinting. Regards, Youenn
_______________________________________________ webkit-dev mailing list webkit-dev@lists.webkit.org https://lists.webkit.org/mailman/listinfo/webkit-dev