New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Security aspects of remote captioning content and alternate formats #24
Comments
For RAUR, I suggest something more oriented towards what applications can do rather than what captioners, audio describers, sign-language interpreters, and other service providers need to do. For example: communication channels used to provide accessibility services, such as captioning, audio descriptions, re-speaking, and sign-language interpretation can be set to follow the same privacy and security policies as other communication channels. For example, in a teleconferencing application, the same encryption applied to the main voice channel can be applied to the channels for accessibility services. |
Similarly for "at rest" encryption and access control of recorded content (e.g., if the application is recording a teleconference). The same protections apply to everything, including the various media alternatives that are provided. |
I was trying to think if there are any new use cases from this. If a user who relies on relay services joins a confidential meeting which is encrypted then is it worth suggesting that the user should be able to authenticate a single third party (ie the relay service) to join the call? |
End-to-end encryption of telecommunications is controversial at the moment. I don't know whether the W3C has any active work in this area or a position, but I agree that if this technology is used, authorizing a relay service to enter a meeting could be a complicated matter. |
Discussed by RQTF on 9th Dec https://www.w3.org/2020/12/09-rqtf-minutes.html - Josh to draft some suggestions. |
Filed on behalf of ITU-T - after comment made by Lidia Best and Masahito Kawamori (ITU) to myself and Shadi Abou-Zahra on a call.
Remotely captioned or transcribed or content in alternate formats may contain user sensitive and/or confidential information. Remote captioners and creators of alternate content should follow codes of best practice so this is not unintentionally divulged to third parties. and the storage of this data in various alternate formats is secure.
The initial use case is outlined well in this document by ITU - 'FSTP-ACC-RCS Overview of remote captioning services' [1]
We aim to refer to this use case in the RAUR and expand on it (we are currently awaiting feedback from ITU on the RAUR.)
[1] https://www.itu.int/pub/T-TUT-FSTP-2019-ACC.RCS
The text was updated successfully, but these errors were encountered: