dalecurtis
commented
3 years ago This is a good topic. I don't think there's any increased exposure, but there is likely easier exposure though. Specifically, the exposure is likely no greater than what can already be done MediaRecorder, Media Source Extensions, and/or WebRTC. E.g., you can append frames 1 at a time into MSE and with WebRTC you can control negotiation pretty extensively. There are plenty of stats feedback mechanisms on all of these APIs.
chcunningham
As discussed in the privacy review, timing attacks allow for profiling of the users machine.
As highlighted by @kdzwinel - This could be an increased exposure to other CPU profiling exposed via other methods as the codecs will allow for granular GPU hardware acceleration