Google's Web Environment Integrity Specification: A Threat to the Open Web?

In a recent article by Julien Picalausa, the author sheds light on Google's new proposal, the Web Environment Integrity specification, and why it is causing concern among developers. The spec, which aims to prevent "fake" interactions with websites, would provide an API to determine if the browser and platform being used are trusted by an authoritative third party.

While the motivation behind this spec may seem noble, the proposed solution has raised eyebrows. Critics have compared it to DRM for websites, as it could potentially exclude vendors and new browsers that have not yet established trust with the attesters. Furthermore, the primary example of an attester given is Google Play on Android, raising questions about impartiality.

Vivaldi browser, in particular, sees this spec as a major threat to the open web and advocates for pushing it back. They argue that Google's frequent creation of specifications that are detrimental to the open web is a cause for concern.

Developers who value the open web and want to stay informed about potential threats should keep an eye on the Web Environment Integrity specification. While there is no official statement from Google regarding this spec, its existence and potential impact warrant further exploration and discussion within the developer community.