Action-91: Write text on fingerprinting risk (ISSUE-109, ISSUE-114), with Nick Doty from Andy Zeigler on 2012-02-29 (public-tracking@w3.org from February 2012)

From: Andy Zeigler <andyzei@microsoft.com>
Date: Wed, 29 Feb 2012 17:18:34 +0000
To: Tracking WG <public-tracking@w3.org>
CC: Nick Doty <npdoty@w3.org>, "tom@mozilla.com" <tom@mozilla.com>
Message-ID: <CB739E10.4D9C2%andyzei@microsoft.com>

Proposed text:

By storing a client-side configurable state and providing functionality to learn about it later, this API may facilitate user fingerprinting and tracking. User agent developers should consider the possibility of fingerprinting during implementation and might consider rate limiting requests or using other heuristics to mitigate fingerprinting risk. User agents should consider clearing stored site-specific exceptions when the user chooses to clear cookies or other client-side state.

Received on Wednesday, 29 February 2012 17:19:23 UTC