ISSUE-114: Guidance or mitigation of fingerprinting risk for user-agent-managed site-specific tracking exceptions
Guidance or mitigation of fingerprinting risk for user-agent-managed site-specific tracking exceptions
- State:
- CLOSED
- Product:
- Tracking Preference Expression (DNT)
- Raised by:
- Nick Doty
- Opened on:
- 2012-01-06
- Description:
- By storing a client-side configurable state and providing functionality to query it later, this functionality may enable user fingerprinting and user tracking. We should either mitigate this concern (can we provide functionality without making fingerprinting of the user easier?) or provide guidance to implementers on how to minimize this risk.
See "Fingerprinting concerns". - Related Actions Items:
ACTION-143 on Roy Fielding to Add Andy Zeigler's text on finger printing risks (ISSUE-109) to section 6.9 and mark issue (in text) as PENDING Review - due 2012-03-13, closed- Related emails:
- Re: TPE sec 6.11 on clearing granted exceptions (from singer@apple.com on 2013-04-26)
- Re: TPE sec 6.11 on clearing granted exceptions (from npdoty@w3.org on 2013-04-25)
- Re: TPE sec 6.11 on clearing granted exceptions (from singer@apple.com on 2013-04-18)
- Re: Agenda for July 18, 2012 DNT WG Call on TPE (from fielding@gbiv.com on 2012-07-18)
- Issues mentioned in the TPE document, or non-closed in the database and applying to TPE (from singer@apple.com on 2012-04-10)
- Re: A First-Party List API for Site-Specific Exceptions (ISSUE-59, ISSUE-109, ISSUE-111, ISSUE-113, ISSUE-114) (from npdoty@w3.org on 2012-03-23)
- RE: A First-Party List API for Site-Specific Exceptions (ISSUE-59, ISSUE-109, ISSUE-111, ISSUE-113, ISSUE-114) (from kevsmith@adobe.com on 2012-03-23)
- RE: A First-Party List API for Site-Specific Exceptions (ISSUE-59, ISSUE-109, ISSUE-111, ISSUE-113, ISSUE-114) (from kevsmith@adobe.com on 2012-03-23)
- Re: A First-Party List API for Site-Specific Exceptions (ISSUE-59, ISSUE-109, ISSUE-111, ISSUE-113, ISSUE-114) (from jmayer@stanford.edu on 2012-03-17)
- Re: A First-Party List API for Site-Specific Exceptions (ISSUE-59, ISSUE-109, ISSUE-111, ISSUE-113, ISSUE-114) (from jmayer@stanford.edu on 2012-03-17)
- Re: A First-Party List API for Site-Specific Exceptions (ISSUE-59, ISSUE-109, ISSUE-111, ISSUE-113, ISSUE-114) (from npdoty@w3.org on 2012-03-17)
- RE: A First-Party List API for Site-Specific Exceptions (ISSUE-59, ISSUE-109, ISSUE-111, ISSUE-113, ISSUE-114) (from kevsmith@adobe.com on 2012-03-15)
- Re: A First-Party List API for Site-Specific Exceptions (ISSUE-59, ISSUE-109, ISSUE-111, ISSUE-113, ISSUE-114) (from sid@mozilla.com on 2012-03-14)
- Re: A First-Party List API for Site-Specific Exceptions (ISSUE-59, ISSUE-109, ISSUE-111, ISSUE-113, ISSUE-114) (from jmayer@stanford.edu on 2012-03-14)
- Re: A First-Party List API for Site-Specific Exceptions (ISSUE-59, ISSUE-109, ISSUE-111, ISSUE-113, ISSUE-114) (from sid@mozilla.com on 2012-03-14)
- RE: A First-Party List API for Site-Specific Exceptions (ISSUE-59, ISSUE-109, ISSUE-111, ISSUE-113, ISSUE-114) (from kevsmith@adobe.com on 2012-03-14)
- A First-Party List API for Site-Specific Exceptions (ISSUE-59, ISSUE-109, ISSUE-111, ISSUE-113, ISSUE-114) (from jmayer@stanford.edu on 2012-03-14)
- Re: ISSUE-111 - Exceptions are broken (from jmayer@stanford.edu on 2012-03-13)
- Issue Cleanup for TPE Document (from mts@zurich.ibm.com on 2012-03-06)
- JS Exception API (from tom@mozilla.com on 2012-02-29)
- Action-91: Write text on fingerprinting risk (ISSUE-109, ISSUE-114), with Nick Doty (from andyzei@microsoft.com on 2012-02-29)
- diff of TPE editing since the FPWD (from fielding@gbiv.com on 2012-01-10)
- tracking-ISSUE-114: Guidance or mitigation of fingerprinting risk for user-agent-managed site-specific tracking exceptions [Tracking Preference Expression (DNT)] (from sysbot+tracker@w3.org on 2012-01-06)
Related notes:
Added in r1.96 and r1.97
2012-03-14: Changed to closed (no objections against closing:
http://www.w3.org/mid/4F5607C5.50208@zurich.ibm.com
Display change log