- From: Roy T. Fielding <fielding@gbiv.com>
- Date: Wed, 17 Jul 2013 09:20:37 -0700
- To: Peter Swire <peter@peterswire.net>
- Cc: "public-tracking@w3.org" <public-tracking@w3.org>
On Jul 17, 2013, at 6:05 AM, Peter Swire wrote: > Following up on Roy's comment: > > For "third party subrequests in general", how much could an overall > short-term collection provision in DNT take care of those requests? I suspect that, most of the time, the security retention and the transient retention will be the same, assuming we mean to include unprocessed logfile retention under the transient period. However, most of the time doesn't mean all of the time, and when an actual attack is detected the records corresponding to that attack may be retained as long as necessary to prevent reoccurrence or to prosecute those responsible. Hence, it is not worth our time to conflate this with short-term retention, since then we'd be adding all sorts of exceptions to the short term. They are better as separate permissions. ....Roy
Received on Wednesday, 17 July 2013 16:20:59 UTC