Thanks for the feedback! Totally on point!

Interesting, can you email me details (email you're trying / account) at mv@stripe.com? Would appreciate it!

Typo "Entreprenuer"

Thanks! Fixed. :)

It always confused me of why this hasn't been fixed yet.

It seems like most of the uniqueness is from the list of fonts and plugins.

Couldn't browsers limit that by asking user permission before providing it? (Fair question and I'm waiting to be wrong)

They can fix most of this. Tor Browser has addressed some of the easier problems and makes fingerprinting more difficult. If you read the bug reports of major browsers, you'll see the maintainers will usually value compatibility and features over privacy. It would be especially nice if they'd fix the issues with fonts because that's one fingerprinting aspect that's really only solved by modifying the core browser code (unless you remove/add fonts system-wide from your machine to match Tor Browser).

Tor Browser overview: https://www.torproject.org/projects/torbrowser/design/

There's a long tail to fingerprinting that's pretty daunting. E.g., you can detect OS by looking for idiosyncrasies of the low level networking stack. One project did attempt to solve this but hasn't been touched in years: http://ippersonality.sourceforge.net/

You can test whether a font is installed with any number of tricks. For example, render white text on a white background with "sans". Then, change the font to the candidate font, with a fallback of sans. If the width of the text changes, the font must be installed.

Interesting.

Maybe browsers shouldn't have access to system fonts except a specific set. Websites can't assume fancy fonts are installed anyway, I don't think it would be a problem?

Yeah, all we'd have to do is convince every manufacturer of operating systems and/or browsers to agree on a common set of fonts, work out licensing/font rendering technology issues etc., then convince all web developers across the world (or at least a sizable portion) to redevelop their websites to work with this list, then enforce the font restriction, and then convince users that this is somehow a good idea because invariably a bunch of the websites they use are going to break. We also need to do it within a few years, otherwise it's too late, and our main argument is going to be 'but maybe websites can use fonts as part of a fingerprint to track what websites we are visiting'.

You couldn't be more wrong about this.

- You need to convince only one browser. People that care about privacy will use that browser.

- You don't need licensing, they still use the OS fonts. They just limit the fonts available.

- You don't need to convince web developers because they already use these fonts and only these fonts. Who's using Papyrus?

- 1997 websites are going to break. Again, new websites use only a set of system fonts or fancy web fonts.

You're both wrong; most people at the point of browsing don't care that much for privacy. Most users would hand out their passwords for a chocolate bar! [0] How much less would they care about their privacy let alone understand how one browser is better than another.

[0] http://news.bbc.co.uk/1/hi/technology/3639679.stm

Very interesting, but it still seems like browsers would be able to prevent that: simply restrict the font list to a generic set when in incognito mode. Similarly for any other fingerprint thing. Of course, in the most general case this might be hard (or impossible) to prevent fully, but a browser developer should be able to at least get close to minimizing it... I would think?

Isn't this something that post PC devices are immune to? Certainly iOS devices that have less fragmentation in versions, screen sizes etc.

Perhaps there is a security/privacy gap in the market here, a browser that appears identical with every other install and manages it's own fonts etc.

Or should you ask him first if he's aware of it?...

(I come from Belgium)

Belgium heatmap is really funny. Flemish people bike so much compared to walloon people: http://cl.ly/image/1R2G0z2k1K2S

We will maintain it on nights/weekends after the official launch!

Congrats!

I thought @tba was working on Kickoff, he's not joining Stripe?

Yes, I've been working on Kickoff for the last year or so, and no, I'm not joining the Stripe team. ;)

There should be a different demo page for each visitor. I was confused and thought it wasn't working well at first.

Regular presentation are only controlled by the author. I made a special case for the demo. Yes, there should be a unique-sync code for each visitor to the demo. I though the universal sync would be collaborative. Might have been my mistake.

I wouldn't change it. When it is going crazy it only reinforces the power of the Sync tech you are doing.

Good advice. The happy medium is a unique code for each person who click the demo link. Firebase would make this easy. Thoughts?

What's the feature exactly? :)

(Never heard of the multiplatform thing before.. seems like bullshit)

The feature is that it allows you take payments from anyone by having them enter their CC, and deposit the funds as directed by your Stripe acct. Clearly not in-app purchases. The functionality is similar to Square, without the swipe.

Indeed.

It sounds like bs, but then when you look at Square and PayPal, it makes sense according to this "rule", I guess.