Home › Forums › General Questions › Content ownership, copyright and security
- This topic has 3 replies, 2 voices, and was last updated 3 years ago by Crunch.
-
AuthorPosts
-
2021-10-16 at 4:26 am #46225xeonCustomer
Hi there,
For those of you using Verge3d or any other WebGL solution commercially and have had to integrate your applications with your client’s IT departments, wrangled with the client’s legal teams, or had to prove the security of content or data. How are these battles going?Xeon
Route 66 Digital
Interactive Solutions - https://www.r66d.com
Tutorials - https://www.xeons3dlab.com2021-10-19 at 7:13 am #46292CrunchCustomerHey Xeon, judging by the response ( or lack thereof), thinking you might be relatively isolated in your struggle for “integration”. Can I asked more (in general terms of course) about what you are trying to integrate?
The way I see it, a “verge app” is just a webpage (no offense to the Soft9soft team!).
(for the record – I a NOT referring to a newer Verge features that allows the code to be complied into an exe as Electron provides)
A webpage can be comprised of any combo of HTML, CSS, Javascript or WebGL.
Provided your “page” isn’t asking for, nor storing any personal user data, what is the hurdle?
Maybe you just are not just explaining it right to the client?
WebGL, as magical as it is, is a web standard – just like HTML. There are no additional programs to download (cough cough… like Macromedia FLASH) to execute.
So with any concerns about “security”, can’t you just refer them to the browser company? (ie, Google, Firefox, Apple)?
2021-10-19 at 3:31 pm #46304xeonCustomerIntegration as in software we aren’t facing any problems. Integrating with client IT teams is a mixed bag. When we take on projects we are either a sole provider/developer and there is no problem or we are asked to work as a team with existing client IT. It’s in these situations where the battles begin. The most frequent is security. Webgl is still heavily frowned upon on where security is a concern. In most cases where we fight the fight the concern was based on out of date information. But these battles can also weaken relationships with clients and can put us into adversarial situations we would rather avoid, not to mention the project delays they can cause and $$$$$$ in legal fees to overcome and satisfy all parties.
We are also finding these issues are more prevalent in the US.
Another issue that keeps popping up is level of detail in the gltf file. Since the file is exposed clients are afraid the models will be used without there permission. This possible of course, but it’s a legal issue of content rights. We as a developer have to acknowledge their models are exposed much like a photo. This adds for some interesting conversations about how much detail to allow and parts that should not be allowed.
End user Privacy is always a concern. There are some easy ways to solve it. But when personal information does have to flow into or out of the webgl app we run into a higher level of scrutiny with code reviews, additional security audits… etc.
So for those out there with similar issues … I am curious how your team is handling these challenges.
Xeon
Route 66 Digital
Interactive Solutions - https://www.r66d.com
Tutorials - https://www.xeons3dlab.com2021-11-29 at 7:48 am #47318CrunchCustomerHey Xeon…YES OF COURSE! The dreaded IT department.. always looking to do the least possible work to make their jobs easier.
I suppose I have been lucky enough lately to dodge those dweebs as most of my stuff has been going via stakeholders over to the learning system dudes, where everything is zipped out into a package that they bring through their own gates to run on.
So no issues there…
Unless…Is a shader in my Blender/Verge project going lash out and read the bumps maps from a credit card in one of the users pocket???….
Maybe, but I doubt.
If you are with the IT dude in the presence of a stakeholder
, be sure to remind the stakeholder that players like Microsoft, Apple And Facebook have dropped their RD piggybank into 3d/VR/WebGL.. than ask why their crack IT dude worried about all those “weaknesses) isn’t up claiming the $100K+ prizes for finding those security flaws in WebGL?As for the concerns of someone ‘stealing’ the details that might be provided by a giltf object on the wepage.. Aren’t such products already along in the patent process b4 you go showing anything on web?
One could do the same, but better with the actual product and a pair of calipers?
I have “verged” many solidwork engineering drawings and by the time they get through my processes.. they have been decimated to the point where their mother nor God could stich them back together in any quantifiable form.
Good talk, whish I had more time for this stuff 😊
-
AuthorPosts
- You must be logged in to reply to this topic.