This questionnaire has moved.
For your convenience, a copy of the questionnaire's questions is quoted here in Markdown, so you can easily include your answers in an explainer.
- What information might this feature expose to Web sites or other parties,
and for what purposes is that exposure necessary?
It exposes, to the server hosting a Web font, the set of characters that the browser can already render in a given Web font, and also the set of characters that it cannot render, but wants to (for example, to render a new Web page). For details, see Extending the Font Subset
The purpose of doing so is to allow the server to compute a binary patch to the existing font, adding more characters. Thus, fonts are transferred incrementally, as needed, which greatly reduces the bytes transferred and the overall network cost..
For some languages, which use a very large character set (Chinese and Japanese are examples) the vast reduction in total bytes transferred means that Web fonts become usable, including on mobile networks, for the first time.
- Do features in your specification expose the minimum amount of information
necessary to enable their intended uses?
Yes, we believe that they do.
It is possible to set a connection_speed
parameter, which may allow the Web font server to make better trade-offs in terms of size of update vs. number of requests. This parameter is optional.
- How do the features in your specification deal with personal information,
personally-identifiable information (PII), or information derived from
them?
No personal information is transferred
- How do the features in your specification deal with sensitive information?
No sensitive information is transferred
- Do the features in your specification introduce new state for an origin
that persists across browsing sessions?
Yes.
- Do the features in your specification expose information about the
underlying platform to origins?
No
- Does this specification allow an origin to send data to the underlying
platform?
No. Web fonts are never installed on the underlying system; they are used without installation.
- Do features in this specification enable access to device sensors?
No.
- What data do the features in this specification expose to an origin? Please
also document what data is identical to data exposed by other features, in the
same or different contexts.
See answer to question 1.
- Do features in this specification enable new script execution/loading
mechanisms?
No
- Do features in this specification allow an origin to access other devices?
No
- Do features in this specification allow an origin some measure of control over
a user agent's native UI?
No
- What temporary identifiers do the features in this specification create or
expose to the web?
64 bit checksums are generated and transferred between client and server. These are used for error detection, change frequently, and should not pose a tracking risk.
- How does this specification distinguish between behavior in first-party and
third-party contexts?
No difference.
- How do the features in this specification work in the context of a browser’s
Private Browsing or Incognito mode?
Such modes may elect to not request any WebFonts, in which case they will not use this specification.
- Does this specification have both "Security Considerations" and "Privacy
Considerations" sections?
Yes
- Do features in your specification enable origins to downgrade default
security protections?
No
- How does your feature handle non-"fully active" documents?
Non-"fully active" documents will not trigger font subset extension requests.
- What should this questionnaire have asked?
Nothing springs to mind.