- From: Gannon Dick <gannon_dick@yahoo.com>
- Date: Mon, 29 Sep 2014 15:26:02 -0700
- To: Dave Thaler <dthaler@microsoft.com>, Matthew Kerwin <matthew@kerwin.net.au>, "t.petch" <ietfc@btconnect.com>, Marcos Caceres <w3c@marcosc.com>
- Cc: IETF Apps Discuss <apps-discuss@ietf.org>, "uri@w3.org" <uri@w3.org>
There are some things that just don't look nice under Best Practices. But I'll take Best Practices over Pig Lipstick any day of the week. ---------------------------------------------------- 2.1 Privacy Considerations This section is non-normative. Using unique identifiers (e.g., a UUID) as an instance identifier can be exploited by an adversary as a digital finger print. This can allow a developer to, for example, restore cookies even if the user has cleared cookies from a user agent. As such, if the user agent relies on unique identifiers as the host component, then it should provide end-users with a means of regenerating the authority component. For instance, A user agent can the regenerate the instance identifier when the user clears the user agent's private data. ------------------------------------------------------- --Gannon -------------------------------------------- On Mon, 9/29/14, Marcos Caceres <w3c@marcosc.com> wrote: Subject: RE: [apps-discuss] file:/// To: "Dave Thaler" <dthaler@microsoft.com>, "Matthew Kerwin" <matthew@kerwin.net.au>, "t.petch" <ietfc@btconnect.com> Cc: "IETF Apps Discuss" <apps-discuss@ietf.org>, "uri@w3.org" <uri@w3.org> Date: Monday, September 29, 2014, 4:02 PM On September 27, 2014 at 5:27:14 AM, Dave Thaler (dthaler@microsoft.com) wrote: > > Personally, I'd love to see it deprecated and replaced by something > more useful/interoperable. We've tried a few times, e.g.,: http://app-uri.sysapps.org/ However, never seems to catch on.
Received on Monday, 29 September 2014 22:26:30 UTC