W3C announced today a W3C Workshop on Permissions and User Consent, September 26-27, 2018, in San Diego, California, USA. The event is hosted by Qualcomm.
The primary goal of the workshop is to bring together security and privacy experts, UI/UX researchers, browser vendors, mobile OS developers, API authors, Web publishers and users to address the privacy, security and usability challenges presented by a complex and overlapping variety of permissions and consent systems available for hardware sensors, device capabilities and applications on the Web.
The scope includes:
- user consent;
- bundling of permissions;
- lifetime/duration of permissions;
- permission inheritance to iframes and other embedded elements;
- relation to same origin policy;
- UIs and controls;
- interaction with private browsing modes;
- implicit permission grants;
- progressive permission grants;
- cross-stack permissions: how OS, browser, and web app permissions interact;
- permission transparency;
- relation to regulatory requirements;
- special considerations for systems that use the browser as a pass-through
- permissions/transparency/UI as it relates to display-less devices that connect to the Internet.
For more information on the workshop, please see the workshop details and submission instructions. Expression of Interest and position statements are due by August 17, 2018.