Opened 8 months ago

#32701 new task

Keep an eye on fingerprinting risks due to the Reporting API

Reported by: gk Owned by: tbb-team
Priority: Medium Milestone:
Component: Applications/Tor Browser Version:
Severity: Normal Keywords: tbb-fingerprinting, ff78-esr
Cc: Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

Support for the Reporting API landed on nightly in the Firefox 65 cycle. There is already at least one needed fingerprinting fixup known which we need to take care of when this gets enabled, but there are likely more. A good start for closer investigation is the Privacy Considerations section in the spec itself.

We should keep this feature disabled until the risks are evaluated. This can be done by making sure dom.reporting.enabled and dom.reporting.header.enabled are false

Child Tickets

Change History (0)

Note: See TracTickets for help on using tickets.