When forcing rasterizeHTML.js to use dataURIs instead of the modern Blob interface it seems that Chrome does not expose issue https://code.google.com/p/chromium/issues/detail?id=294129 and so allows to read back from the canvas (not throwing a security exception). In this case we should probably fall back to dataURIs.