-
Notifications
You must be signed in to change notification settings - Fork 60
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Self-contained Packages #1876
Comments
The spec says:
Perhaps MUST NOT is appropriate here? |
In this context, I think the paper Reading Between the Lines: An Extensive Evaluation of the Security and Privacy Implications of EPUB Reading Systems contains a good analysis of problems of current reading systems. It may also help to clarify some of the phrasing above. |
@jenstroeger do you know if there is a version of the paper that is not behind a paywall? |
A copy of the paper from the author's academic site: https://lirias.kuleuven.be/retrieve/616428 This paper is so useful! Thanks for pointing it out -- and I'm sorry I missed it when we had our first discussion of a privacy review. As always, we need to improve outreach to and coordination with academics. |
The issue was discussed in a meeting on 2022-04-08 List of resolutions:
View the transcript1. Close Privacy & Security Issues.Dave Cramer: the TAG has reappeared of making a couple comments, I am making a PR to mention that when using web APIs, which have the most dramatic privacy and security implications (geolocations, push notifications) then you should get user consent. See github issue epub-specs#1959. Dave Cramer: we have several issues where there was never much discussion in the issue (#1959 for example). Ivan Herman: we had a lot of discussion with PING, good discussions, after which we made extensive additions to answer the issues they raised. Gregorio Pellegrino: so is this passed? it is okay? See github issue epub-specs#1872. Ivan Herman: yes, it is okay. Dave Cramer: risk of exposure and finger printability. See github issue epub-specs#1873. Dave Cramer: obfuscation, which we've discussed extensively, followed by updates to the spec docs. See github issue epub-specs#1875. See github issue epub-specs#1876. Dave Cramer: interactivity, which we've addressed as best we can given that it's ambiguous. See github issue epub-specs#1957. Dave Cramer: we enumerated the threat model, which deals with #1957. See github issue epub-specs#1958. Dave Cramer: permission prompts, we're dealing with this, strengthened text. See github issue epub-specs#1959.
Dave Cramer: broad user expectations issues, which is covered by the other changes we've made.
Dave Cramer: I think the spec is now much more informative/clear about some of these issues, so thanks everyone.
|
non-normative text notes the privacy and security advantages, but doesn't expect that they'll be met. Could the spec normatively define the properties necessary for an epub to be a self-contained book, so that users, reading systems, archivists, etc. could know/test that it's self-contained and would have those privacy properties? |
This sounds a lot like we'd be walking the path of making an archival format for EPUB. There is an ISO specification that purports to do this, though it wasn't done through IDPF/W3C channels. I don't have access to that document, but there's a recap of it here: https://www.loc.gov/preservation/digital/formats/fdd/fdd000519.shtml Would it work to point to that standard as an example for those who are interested? Normatively recommending that all EPUBs be self-contained probably isn't a realistic goal for the core authoring specification. |
+1 to that, noting that the ISO standard refers to EPUB 3.01 (not sure whether the differences in 3.2 would influence the ISO spec, though). At some point, when EPUB 3.2 will be published, the question of fast-tracking EPUB 3.2 through ISO will come up (our W3C/ISO agreement will make that easy). At that point, we should encourage ISO to update the EPUB Preservation spec. |
From the PING review:
The text was updated successfully, but these errors were encountered: