expiry changes from Lorrie Cranor on 2001-08-01 (www-p3p-policy@w3.org from August 2001)

From: Lorrie Cranor <lorrie@research.att.com>
Date: Wed, 1 Aug 2001 14:27:04 -0400
To: <www-p3p-dev@w3.org>, <www-p3p-policy@w3.org>
Message-ID: <077801c11ab7$a6dca560$3a06cf87@research.att.com>

The P3P specification working group has adopted some
changes related to the EXPIRY element. New text for section
2.3.2.3 is attached. These changes eliminate the use of
HTTP headers for determining policy and policy reference
file expiry, move the EXPIRY element to be a child of
the POLICIES element, and clarify the meaning of expiry.

In addition, we will change sections 3.2.1 and 3.2.2 to
move the EXPIRY element to be a child of the POLICIES
element instead of the POLICY element (and update
the DTD and schema accordingly). 

The paragraph before example 2.3 in
section 2.3.2.7 will be changed to say:

 "The policy that applies to a cookie applies until the policy 
expires, even if the associated policy reference file expires
prior to policy expiry (but after the cookie was set). 
If the policy associated with a cookie has expired, then the user agent 
SHOULD reevaluate the cookie policy before sending the cookie. 
In addition, user agents MUST use only non-expired policies 
and policy reference files when evaluating new set-cookie events."

Attachments

text/html attachment: 2323.html

Received on Wednesday, 1 August 2001 15:44:28 UTC