I wondered that it's easy to find the identity by collecting how much space all other origins take up together. It's possible that the size of other origins that user has visited could change next time. Unless users don't browse other sites. Maybe I missed something?
On 1 July 2017 at 01:51, Anne van Kesteren <ann...@annevk.nl> wrote: > On Fri, Jun 30, 2017 at 10:47 AM, Tom Tung <tt...@mozilla.com> wrote: > > I think there are the similar issue but not the same. The bug 1290481 is > > focus on not exposing the size of opaque responses while the leakage of > > amount of storage used is about exposing overall usage of other origins. > > Yeah indeed. The leak I attempted to describe is at best a > fingerprinting data point. It can reveal to an origin (after the user > has agreed to let that origin use persistent storage in some manner, > currently through a dialog) how much storage combined all other > origins the user has visited use. > > > -- > https://annevankesteren.nl/ > _______________________________________________ > dev-platform mailing list > dev-platform@lists.mozilla.org > https://lists.mozilla.org/listinfo/dev-platform > -- Regards, Shawn Huang _______________________________________________ dev-platform mailing list dev-platform@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-platform
