Remote work changes are being driven by the expectation of 25% occupancy limits at facilities for many months to come. I wish the implications of this fact on childcare were getting 1% of the attention that tech WFH is getting. We are about to enter a new crisis. I'm not an economist or industry insider, just a parent with a kid who is (was?) supposed to start preschool in a few months. But this is what I see coming that almost nobody is discussing or demanding a plan for...

Thinking a lot about what the BA and Marriott fines mean in a very near future where India, Indonesia, Brazil, Canada, etc.. and 30 US states all have similar penalties. The current terribleness of information security needs to improve, but not sure that the instant corporate death penalty for getting, e.g. magecarted or breached by a state intel service is the right incentive structure.

@alexstamos This is tricky to do from a purely technical standpoint because apps will just take everything currently hitting 3rd party endpoints and start proxying it through their own domain, causing more opacity and likely new classes of security vulnerability. @alexstamos Apple has been trying to push something like this in the W3C for web apps, where composing apps from multiple sources (like CDNs) a is fundamental part of the platform and analysis-in-advance isn't possible.

Thread: Apple's recent policy change to forbid apps using social sign on from saving or using access tokens server-side is going to harm security, and well beyond for just users of Apple devices. Remember that passwords are the #1 source of user security and privacy harm. Social sign in is the most usable, preferred alternative in use today. Password managers just aren't as easy and useful, especially for those who use apps across multiple platforms and devices.