W3C home > Mailing lists > Public > public-tracking@w3.org > October 2014

Re: TPE last-call issues on my plate, summary

From: Anne van Kesteren <annevk@annevk.nl>
Date: Thu, 9 Oct 2014 19:05:03 +0200
Message-ID: <CADnb78gEK9saOCbfJqxboadUryOTNdWY=M00XsqXJDoKbs0CFg@mail.gmail.com>
To: "David (Standards) Singer" <singer@apple.com>
Cc: Sid Stamm <sstamm@mozilla.com>, Tracking Protection Working Group <public-tracking@w3.org>
On Thu, Oct 9, 2014 at 7:00 PM, David (Standards) Singer
<singer@apple.com> wrote:
> Given that, the group tried to minimize difference from existing techniques, notably cookie and script cross-origin, so as to re-use as much as possible (concept and code).  I get the sense that you’d prefer a more modern design that represents an improvement on cookies, cors, and the like. I am not sure the group agrees; simple/compatible to implement is actually desirable.  (That’s why I hesitate about promise returns, for example, and I am pushing back gently on expiration parameters).

To be clear, cookies and document.domain and friends depend on
publicsuffix.org. That is bad. We don't want to increase the amount of
things that depend on that unless there's a very compelling reason.
Anything new we've done for the last decade or so has been based on
origins.


-- 
https://annevankesteren.nl/
Received on Thursday, 9 October 2014 17:05:31 UTC

This archive was generated by hypermail 2.3.1 : Friday, 3 November 2017 21:45:24 UTC