W3C home > Mailing lists > Public > ietf-http-wg@w3.org > October to December 2013

Re: Pervasive encryption: Pro and contra

From: Nicolas Mailhot <nicolas.mailhot@laposte.net>
Date: Sun, 17 Nov 2013 23:11:52 +0100
Message-ID: <bd65ec5268ef906ebe26967e067c67f1.squirrel@arekh.dyndns.org>
To: "Robert Collins" <robertc@squid-cache.org>
Cc: "Tim Bray" <tbray@textuality.com>, "ietf-http-wg@w3.org" <ietf-http-wg@w3.org>

Le Dim 17 novembre 2013 09:45, Robert Collins a écrit :
> C5.2 It’s unethical to insert encryption into people’s connections
> without their consent.
> This has an inverse:
> P3 : It's unethical to have presumed-private conversations not be
> Arguably to P1 (protection) : this is about expectations of users.

User expectations are broken right and left by websites. The url claims
they access a particular entity but in fact half the web site is
constructed from stuff hosted elsewhere, usually for plugging in as many
paying data collection schemes as possible.

3 out of 4 times one of our users requests his access logs his immediate
and horrified response is "but I didn't go there!" (and of the remaining
25% percent most don't answer so I have no idea of what they think of
their logs)

Nicolas Mailhot
Received on Sunday, 17 November 2013 22:12:23 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 1 March 2016 11:11:19 UTC