zlacker

[return to "Google’s nightmare “Web Integrity API” wants a DRM gatekeeper for the web"]
1. codedo+rg[view] [source] 2023-07-24 22:28:33
>>jakobd+(OP)
> Google's plan is that, during a webpage transaction, the web server could require you to pass an "environment attestation" test before you get any data.

There is no value in this "attestation" for me as a user. I want to be able to do whatever I want with the browser (for example, remove ads or block access to canvas and webgl) and I want sites to be unable to know this. And probably this attestation will provide additional fingerprinting signals which is what I don't want.

◧◩
2. Gordon+OJ1[view] [source] 2023-07-25 11:34:48
>>codedo+rg
Attestation can have value in a corporate network, ensuring only patched company laptops can connect to certain services, for example.

But software already exists to do this kind of thing for private networks. I really, strongly believe that this kind of functionality has no place on the open web.

This proposal is user-hostile, and could be very dangerous to the future of the web.

[go to top]