Closed Bug 1894977 Opened 11 months ago Closed 11 months ago

Can captureStream be used as a generic bypass of Canvas Fingerprinting Protections?

Categories

(Core :: Privacy: Anti-Tracking, task)

Product:
Core
Component:
Privacy: Anti-Tracking
Type:
task

Tracking

()

Status:
RESOLVED INVALID

People

(Reporter: tjr, Unassigned)

Details

(Making this moco-only for now while we investigate)

See https://developer.mozilla.org/en-US/docs/Web/API/HTMLCanvasElement/captureStream - it seems like this might be a way to get the contents of a canvas without triggering our fingerprinting protections - either RFP's more aggressive "no content at all, just random data (or white)" or FPP's more subtle "add a bit of random". The question is if you can send the contents to a sink that you can then read in a different way to get the data out of...

Okay, we have code in this function so while there may be an issue with it, it would be a bug not an ensite API omission we made accidently.

Group: mozilla-employee-confidential
Status: NEW → RESOLVED
Closed: 11 months ago
Resolution: --- → INVALID
You need to log in before you can comment on or make changes to this bug.