This standard allows sites to query and ask for permission to use attached media devices (cameras, mics, etc).
It has sig privacy problems as is. Its the one that I think we should formally oppose (in its current form) the strongest.
It requires the client to generate long-lived unique identifiers per site. I think this is unique in the web platform, and scary enough itself
there are numerous ways the exact same functionality could be maintained, with little to no functionality loss to the user, w/o requiring these identifiers (i made some suggestions already in https://github.com/w3c/mediacapture-main/issues/607)
identifiers are per origin, not double keyed, despite the groups prior commitment to make identifiers double keyed (e.g. both process and API concerns)
etc
This is good functionality, implemented in a bad way. I suggest formally opposing as is, but also working with the group to try and get the functionality working in a more privacy preserving way
https://w3c.github.io/mediacapture-main/getusermedia.html
This standard allows sites to query and ask for permission to use attached media devices (cameras, mics, etc).
It has sig privacy problems as is. Its the one that I think we should formally oppose (in its current form) the strongest.
This is good functionality, implemented in a bad way. I suggest formally opposing as is, but also working with the group to try and get the functionality working in a more privacy preserving way