W3C home > Mailing lists > Public > w3c-wai-gl@w3.org > October to December 2005

Re: session timeouts - Re: Guideline 2.2 Issue Summary

From: Gez Lemon <gez.lemon@gmail.com>
Date: Mon, 10 Oct 2005 19:47:19 +0100
Message-ID: <e2a28a920510101147ufffe596g@mail.gmail.com>
To: w3c-wai-gl@w3.org

On 10/10/05, Isofarro <lists@isofarro.uklinux.net> wrote:
> Be a little wary of the practical implications of these ideas (both
> ideas). Server session timeouts are typically there as a means of a
> server reclaiming unused memory. In the UK there's also the Data
> Protection Act to consider, which, in terms of financial websites and
> its related webapplications, its not advisable to keep a session open
> indefinitely, nor is it advisable to store potentially private
> information in a cookie.

Good points, Mike. The only other technique I can think of would be to
offer registration and keep the transaction in a database, which would
allow them a reasonable amount of time (however much the administrator
could afford for a transaction table) to complete the form.

Best regards,

Gez

--
_____________________________
Supplement your vitamins
http://juicystudio.com
Received on Monday, 10 October 2005 18:47:35 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Monday, 7 December 2009 10:47:40 GMT