- From: Daniel Appelquist <notifications@github.com>
- Date: Tue, 22 Jun 2021 01:49:08 -0700
- To: w3ctag/design-reviews <design-reviews@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Tuesday, 22 June 2021 08:49:46 UTC
@krgovind regarding [technical only enforcement](https://github.com/privacycg/first-party-sets/issues/43). The question is: is there a way that this technology could work without needing a registration system at all? That would eliminate the need for a centralised static list of any kind, would eliminate the need for registration with different UAs, would eliminate the centralization issue, and it would eliminate a lot of compleixity in how it works. It's not clear that the registration criteria that [the PR](https://github.com/privacycg/first-party-sets/pull/45) talks about would stop the kind of abuse case that we envision, specifically ad networks using this technology effectively as third party cookies after third party cookies have been deprecated. Given that, would it be possible to design the technology itself to mitigate against those abuse cases? I see the issue referenced above but is this being given serious consideration? -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/w3ctag/design-reviews/issues/342#issuecomment-865754356
Received on Tuesday, 22 June 2021 08:49:46 UTC