W3C home > Mailing lists > Public > public-lod@w3.org > July 2009

Re: URI Instability as a Goal

From: Sam Kuper <sam.kuper@uclmail.net>
Date: Thu, 16 Jul 2009 16:23:12 +0100
Message-ID: <4126b3450907160823j6b6d8fd9o68408a55f00cef09@mail.gmail.com>
To: David Wood <david@zepheira.com>
Cc: Eric Hellman <openurl@gmail.com>, Reilly Hayes <rfh@metaweb.com>, public-lod <public-lod@w3.org>
2009/7/16 David Wood <david@zepheira.com>

> I must agree.  Security by obscurity is not the best approach, even though
> it appears to give some short-term benefits.  See Schneier's analysis [1],
> for discussion.  Changing URLs by algorithm is just another form of
> obscurity, which yields fragility and fails badly in the case where the
> algorithm can be uncovered.
> TimBL, et al, didn't say that URIs are cool because they don't change, they
> said that URIs that don't change are cool for some very good reasons.

I heartily agree too. If the suggestions at the URL Reilly Hayes posted were
followed, they would provide scant security benefits at great cost to web
users and especially web archivists.

Nonetheless, I'm grateful to Reilly for bringing the proposal to the list's
attention. That some shortsighted developers might adopt the proposal's
recommendations is something we should be aware of and should also - I think
- be ready to oppose.


Received on Thursday, 16 July 2009 15:23:52 UTC

This archive was generated by hypermail 2.4.0 : Thursday, 24 March 2022 20:29:44 UTC