As far as my understanding go, Private State Tokens is supposed to be a huge improvement over cookies in terms of security and privacy, which make ask about the reason they are not implemented on Firefox.
As far as my understanding go, Private State Tokens is supposed to be a huge improvement over cookies in terms of security and privacy, which make ask about the reason they are not implemented on Firefox.
Private State Tokens are Google’s implementation of the IETF Privacy Pass protocol. Apple has another implementation of the same protocol named Private Access Tokens. Mozilla has taken a negative position against this protocol in its current form, and its existing implementations in their current forms. See here for their blog post on the subject, and here for their more in-depth analysis.
It seems like Mozilla’s main complaint here is that privacy pass encourages centralization of captcha providers. But captcha providers are already highly centralized?? 90% of captchas are Google.