search

privacycg / storage-partitioning

Client-Side Storage Partitioning
https://privacycg.github.io/storage-partitioning/
72 stars 9 forks source link

Add more state and standards activity #6

Closed annevk closed 4 years ago

annevk commented 4 years ago

Closes #4.

@arthuredelstein I cannot ask for your review directly, but I'd appreciate it!

annevk commented 4 years ago

I ended up excluding "page info media previews", but maybe that's the wrong call? I should probably redo non-standardized state a bit as an enumeration of things implementations ought to consider in addition to what standards require to be robust. Makes sense?

arthuredelstein commented 4 years ago

Hi Anne, yes - I think a "non-standard" or "in-browser" checklist that gives examples can be very useful. Leaks via Page Info, Save Page As, Favicons and auto form-fill were all things that happened in Firefox before they were isolated.

Additionally, I would suggest including subcategories. For example, as I recall in Firefox the image cache needed to be isolated in addition to the HTTP cache. And, as there are many kinds of connections (speculative, prefetch, OCSP) it's useful to list these somewhere to help missing them.

annevk commented 4 years ago

Thanks, I think I have them all listed now.

arthuredelstein commented 4 years ago

Looks great. Thanks!