RE: ISSUE-89: Does DNT mean at a high level: (a) no customization, users are seen for the first time, every time. (b) DNT is about data moving between sites.

[Shane]

* Tracking Protection Working Group Issue Tracker wrote:
>ISSUE-89: Does DNT mean at a high level: (a) no customization, users
>are seen for the first time, every time. (b) DNT is about data moving
>between sites.

(This is a false choice, it is entirely possible to customize on the
client without any information about that leaking to the network in a
major way. It is also possible to create a false impression of this,
consider that customizations may have temporal implications allowing
timing attacks, and you might make mistakes that result in leakages,
and there may be unavoidable leaks (how many items per page?) but it
would be disingenuous to claim that Do Not Track and Customization
are mutually exclusive. I do understand that a one-line description
cannot capture this in detail, of course.)

["understand a one-line description cannot capture..."  I believe this is why the condition of "at a high-level" was included in the text to provide a "starting point" for discussion - not an end point that articulates the full granularity of the question at hand.  More fundamentally I believe the question is "can historical data collected from previous cross-site web site activity be leveraged if the DNT signal is received?".  Outside of some of the caveats we'll hopefully discuss and agree upon (frequency capping <operational> or fraud detection/defense <security>) I believe this is a fair position to start the discussion from:  Tracking = leveraging historical observed activity to affect the current or future user experience).]



-- 
Björn Höhrmann · mailto:bjoern@hoehrmann.de · http://bjoern.hoehrmann.de
Am Badedeich 7 · Telefon: +49(0)160/4415681 · http://www.bjoernsworld.de
25899 Dagebüll · PGP Pub. KeyID: 0xA4357E78 · http://www.websitedev.de/

Received on Thursday, 6 October 2011 03:28:51 UTC