Latest WebWise (Phorm) Trials end - but presumably without a debriefing for the participants.

[Richard Clayton]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

In article <MJcuAAl5$ORJFAnN@perry.co.uk>, Roland Perry <lists@internetp
olicyagency.com> writes

>In article <ZacVwoHbfNRJFAUr@highwayman.com>, Richard Clayton 
><richard@highwayman.com> writes

>>>And some tracking cookies with a
>>>life of three days.
>>
>>It was never revealed to me (when I writing up their mechanisms) what
>>the intended lifetime of the per-site cookies was (and I don't recall
>>any mention of 3 days for anything Phorm related)
>
>para 23 & 33 of your paper. 

How soon I forget!  apologies.   I'd also forgotten (probably wisely)
the mess that surrounds the age of cookies... [so best to ignore much of
my previous article].

RFC2109 and RFC2965 describe a "Max Age" parameter to tell the client
when to delete the cookie.  Microsoft's IE ignores this.

The original Netscape document described an "Expires" parameter to tell
the client when to delete the cookie....  this is commonly used despite
not being in the RFC!

Since no-one seems to have investigated traffic for someone on the BT
trial (or even identified anyone who took part) we've no idea what Phorm
did in practice :(

- -- 
richard                                              Richard Clayton

They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety.         Benjamin Franklin


-----BEGIN PGP SIGNATURE-----
Version: PGPsdk version 1.7.1

iQA/AwUBSUVDJ5oAxkTY1oPiEQIIZACgw9RwMgt1tHv0nqYok4UlNagEXt8AoMBH
ZoajUyVpWt0kXfq54dk6kNh+
=Sv6k
-----END PGP SIGNATURE-----