Closed ddorwin closed 8 years ago
I'm not sure what is proposed to be changed here.
I agree that #314, #315 and #316 are worthwhile editorial changes.
For this one, I believe we want to change: Provide per-origin user alerts / prompts and permissions
To: Ensure that users are fully informed and/or give explicit consent
Yes, that is the type of change I was referring to. I'll make a PR.
PR #322.
Both the Security and Privacy sections have mitigations with the heading "Provide per-origin user alerts / prompts and permissions".
The current heading could be interpreted as:
More importantly, both contain important requirements that extend beyond alerts, prompts, or permissions. The per origin (and per browsing profile) requirements in the following paragraph are an additional mitigation. Certainly those requirements must (#314) be per-origin, but that is not the most important mitigation in these sections.
Specifically: