Hi,
According to this [1] and several news reports Chrome plans to limit
autoplay videos in future versions.
I assume the autoplay policy option (chrome://flags/#autoplay-policy)
is an opt-in preview of that feature (?).
I wonder if Chrome has any security expectations about this feature.
Particularly I have the following questions:
1. Would it be considered a security vulnerability if a webpage that
does not meet the criteria defined by the policy is able to still
autoplay videos and bypass the policy?
2. Would webpages that actively try to bypass the policy be considered
malicious pages and e.g. added to google's safe browsing block list?
[1]
https://developers.google.com/web/updates/2017/09/autoplay-policy-changes
--
Hanno Böck
https://hboeck.de/
mail/jabber:
ha...@hboeck.de
GPG: FE73757FA60E4E21B937579FA5880072BBB51E42