Skip to content

Commit cd59f77

Browse files
committed
Add security and privacy section
1 parent 122e433 commit cd59f77

File tree

1 file changed

+15
-0
lines changed

1 file changed

+15
-0
lines changed

loaf-explainer.md

Lines changed: 15 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -244,6 +244,21 @@ while (true) {
244244
}
245245
```
246246

247+
### Security & Privacy Considerations
248+
249+
At the most part, LoAF only exposes information across same-origin windows. Information about
250+
scripts within a window is already observable, e.g. using resource timing or a service worker.
251+
252+
However, LoAF might expose rendering information for a particular document tree that may be
253+
cross-origin (same-agent/site). The details about rendering the frame, such as
254+
`styleAndLayoutStartTime`, are proposed to be visible to all the same-agent windows that are
255+
rendered serially. That's because this information is already observable, by using
256+
`requestAnimationFrame` and `ResizeObserver` and measuring the delay between them. The premise is
257+
that global "update the rendering" timing information is already observable across same-agent
258+
windows, so exposing it directly does not leak new cross-origin information. However, the idea
259+
exposing less information to cross-origin same-agent subframes (as in, expose ) is open for
260+
discussion.
261+
247262
### Notes, complexity, doubts, future ideas, TODOs
248263

249264
1. One complexity inherited from long tasks is the fact that the event loop is shared across

0 commit comments

Comments
 (0)