kmonsen
kmonsen
@johnwilander @annevk @mikewest Hey, have you had a chance to look at this? We would love to work with you to protect all our users.
where would you expect to see it?
Answering some of your questions and a bit out of order: - Cookie theft happens on every Chrome platform, even though some has strong app isolation. It happens a lot...
All are in scope of this protocol, our aim is to support this on all version of Chrome. We cannot be sure 100% it is possible, or when it will...
To clarify as well, Android devices do (sometimes) have a TPM, and if so that will be used. One Mac currently Secure Enclave is used as an TPM. For iOS...
Fixed to always use Sec-Session-Response as a header.
Sorry, I got a bit delayed with the blog post and all the activity here. Should be ready by next week. I have updated the timeline, it should not affect...
The branch point for 126 is 13th of May, so it will be there before that. I hope next week, I'll post back on this post once it has landed....
https://www.rfc-editor.org/rfc/rfc8941.html#section-3.3.5 base64 :Y2hhbGxlbmdl: challenge
Hey it will be updated to a string with no encoding, or at least no encoding that the browser care about. It will put whatever string it receives in the...