W3C home > Mailing lists > Public > ietf-http-wg-old@w3.org > January to April 1997

RE: Unverifiable Transactions / Cookie draft

From: Yaron Goland <yarong@microsoft.com>
Date: Fri, 14 Mar 1997 12:10:56 -0800
Message-Id: <11352BDEEB92CF119F3F00805F14F48502566686@RED-44-MSG.dns.microsoft.com>
To: "'hedlund@best.com'" <hedlund@best.com>
Cc: "'dmerriman@doubleclick.net'" <dmerriman@doubleclick.net>, http-wg@cuckoo.hpl.hp.com
X-Mailing-List: <http-wg@cuckoo.hpl.hp.com> archive/latest/2659
I did not suggest that you should throw up your hands and surrender.
Rather my point is that I do not believe that you have helped protect
user privacy but I do believe that you have hurt a lot of smaller web
sites who are trying to make a living on the web and thus contributed to
the reduction of diversity on the web. I believe that the outcome is

> -----Original Message-----
> From:	M. Hedlund [SMTP:hedlund@best.com]
> Sent:	Friday, March 14, 1997 1:54 AM
> To:	Yaron Goland
> Cc:	'dmerriman@doubleclick.net'; http-wg@cuckoo.hpl.hp.com
> Subject:	RE: Unverifiable Transactions / Cookie draft
> On Thu, 13 Mar 1997, Yaron Goland wrote:
> > I would also point out that besides denying smaller sites revenue,
> > preventing "unverifiable transactions" only puts a very small bump
> in
> > the road of collecting user data. [...]
> > User Privacy - 0
> > Small Web Sites - 0
> It is a misrepresentation to say that there is "0" gain in user
> privacy by
> way of the unverifiable transaction limitation in the cookie RFC.  We
> would
> not have wasted the extensive amount of time we spent on this issue
> for no
> gain.  The specification as written provides reasonable protection for
> users while trying to allow implementors flexibility in user interface
> design.
> I do agree that data sharing can be accomplished through other means
> than
> shared cookies.  However, the concern of the state management subgroup
> was
> crafting a specification that did not create _new_ privacy problems. 
> Because there are other privacy issues on the Web does not mean that
> we
> should throw up our hands and surrender in this specification.
> M. Hedlund <hedlund@best.com>
Received on Friday, 14 March 1997 12:15:21 UTC

This archive was generated by hypermail 2.3.1 : Wednesday, 7 January 2015 14:40:19 UTC