23652 2013-10-28 10:40:13 +0000 Need for a non-normative section describing implementation security concerns and mitigation strategies 2013-12-20 22:09:16 +0000 1 1 1 Unclassified Browser Test/Tools WG WebDriver unspecified All All RESOLVED FIXED P2 normal --- 20860 1 tobie.langel public-browser-tools-testing dburns mike tobie.langel public-browser-tools-testing oldest_to_newest 95423 0 tobie.langel 2013-10-28 10:40:13 +0000 Concerns around implementation security issues are preventing adoption of WebDriver notably in the TV industry, which is worried WebDriver could be used to subvert a user's TV set. It would be extremely useful to either have a (non-normative) section on security within the spec, describing the potential security risks (including social engineering) and mitigation strategies, or have such a document hosted elsewhere to which I could point to when security is brought up as a concern. Case studies on how the security concerns have been resolved in shipping implementations would also be tremendously useful. 97830 1 dburns 2013-12-20 22:09:02 +0000 Landed in https://dvcs.w3.org/hg/webdriver/rev/2db0ef25522e