It's totally plausible to think we can allow web access to USB devices w/o CORS. That doesn't make CORS equivalent to DRM.
-
-
-
DRM's threat model is incoherent: allow one local system access but block all others? WebUSB only tries to block other websites.
-
Honest question: Why not use the WebBluetooth model, where a WebUSB device natively exposes specific services instead of raw USB?
-
1/3 WebBT takes advantage of GATT, where the upstream standards already has those services.
-
2/3 WebBT is weaker than we'd like here: we can't actually give human-readable names to most services.
-
3/3 We guess that more USB devices blindly trust things they're physically connected to than BT devices trust their radio links.
-
4/3
It's actually scary that WebBT *doesn't* have a CORS mechanism. We think we can get away with it, but we're not certain.
End of conversation
New conversation -
-
-
It isn't DRM because the policy is advisory. There's a bug open to add an override for power users: http://crbug.com/598766
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.