Re: privacy definitions -- was: WebID questions from David Singer on 2012-10-18 (public-privacy@w3.org from October to December 2012)

From: David Singer <singer@apple.com>
Date: Thu, 18 Oct 2012 15:12:37 +0800
To: Kingsley Idehen <kidehen@openlinksw.com>
Cc: public-privacy list <public-privacy@w3.org>
Message-id: <85B6B3C1-B64B-412F-97CF-51F4EC895409@apple.com>

On Oct 17, 2012, at 19:50 , Kingsley Idehen <kidehen@openlinksw.com> wrote:

> On 10/17/12 2:17 AM, David Singer wrote:
>> On Oct 16, 2012, at 20:40 , Henry Story <henry.story@bblfish.net> wrote:
>> 
>>> But that is not yet transparency I am looking for. Because you could go to a site and click mistakenly on "accept cookies forever", and you could easily forget about it later. What is
>>> needed I was arguing is the ability to be able to see in your URL bar that you are using cookies
>>> and be able to switch it off easily. Then you would be made aware constantly of your identity at
>>> a site.
>> The problem is that many, if not most, sites use cookies, and a warning that is almost always on gets ignored.
>> 
> David,
> 
> Yes, and that's a function of the current UI/UX patterns. The very patterns that Henry is trying to bring to the attention of browser developers. Fixing existing broken UI/UX patterns are the key to bringing the "identity" issue into clearer context for browser users.
> 
> To conclude, this is a problem that can be solved by browser vendors stepping to the plate and delivering functionality desperately sought (knowingly or unknowingly) by browser users. There are no browser users that seek to knowingly compromise their rights to online privacy.


I think we are at cross-purposes.  You seem to be making the rough suggestion that browser vendors aren't indicating which sites set cookies because they want to drag their feet, rather than responding to my point.

To reiterate:
a) a warning that a site uses cookies will rapidly be ignored, and hence useless and meaningless to users (who takes any notice of a red lamp that's always on?)
b) the more problematic uses of cookies are from sites that are not the primary one the user visits, and a warning that comes on when *any* site included in the page uses them is almost certain to come on 99% of the time
c) many cookies are nothing to do with privacy

David Singer
Multimedia and Software Standards, Apple Inc.

Received on Thursday, 18 October 2012 07:13:13 UTC