sharing of UIDs between origins is becoming widespread from Mike O'Neill on 2014-01-09 (public-tracking@w3.org from January 2014)

From: Mike O'Neill <michael.oneill@baycloud.com>
Date: Thu, 9 Jan 2014 16:38:51 -0000
To: <public-tracking@w3.org>
Message-ID: <003501cf0d59$4a5cf450$df16dcf0$@baycloud.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Here is a recent paper describing Cookie Matching. It illuminates the privacy threat and why DNT:1 should require no sharing of UIDs between origins.

http://hal.archives-ouvertes.fr/docs/00/91/52/49/PDF/SellingOffPrivacyAtAuction.pdf

Mike
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.13 (MingW32)
Comment: Using gpg4o v3.2.34.4474 - http://www.gpg4o.de/
Charset: utf-8

iQEcBAEBAgAGBQJSztCaAAoJEHMxUy4uXm2JyWYH/04KsSdXAhkGt8fVcokZ7fAV
2RY+2tn7kdHVnHU3piEsEXMpdNkjTK2XL/asHzn4PXACDM71hV33Ag7tR71YRGiD
p4Gbx0jWswajBxSFU0BWcM5IUfu9NBbflGfHAiwhgEfnGPJhGrUVSA7fMtqZBmUG
+eppOJhR5KYgBLMqVxZC+RIf+UZqzK0oKW0zRL1O+VbppzH0DrvAa4kedP8KYIxN
7VO13BJs8RX+/UkhZh9tMQ1z6K36MHSTbAh59GjIx0D+rQutpaz2KeIW6Nzptl9s
0Tea7kifq2kHreJdsZnAPEeRcGqOKhfq0uP27KoZ2wJzV5oBN7MsK2RbCNG+dSE=
=B/pU
-----END PGP SIGNATURE-----

Attachments

text/html attachment: PGPexch.htm
application/octet-stream attachment: PGPexch.htm.sig

Received on Thursday, 9 January 2014 16:39:44 UTC