W3C home > Mailing lists > Public > public-geolocation@w3.org > April 2009

geolocation API calls in 3rd part scripts

From: Erik Wilde <dret@berkeley.edu>
Date: Fri, 24 Apr 2009 17:40:55 +0200
Message-ID: <49F1DD87.8090205@berkeley.edu>
To: "public-geolocation@w3.org" <public-geolocation@w3.org>
CC: locweb@lists.berkeley.edu
hello.

after listening to a great privacy talk at WWW2009, the following 
question came to mind: a major share of web sites people visit these 
days are doing privacy-related things by using 3rd party cookies or 
scripts. user ahvior tracking gets increasingly sophisticated and 
trackers move from simple cookie-based to 3rd part scripts. is there any 
impact this should have to the geolocation API? or should 3rd part 
scripts (typically served by tracking services) have full access to 
location information? modern browsers have individual security settings 
for 1st party cookies and 3rd part cookies, and a possible strategy to 
at least mitigate location leakage to trackers would be to say that 
client should/must (that of course is up to discussion) provide control 
over location information provided to 3rd party scripts.

cheers,

dret.

PS: http://www2009.org/proceedings/pdf/p541.pdf
Received on Friday, 24 April 2009 19:19:34 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Thursday, 22 March 2012 18:13:43 GMT