|
|||||||
 |
|
|
LinkBack | Thread Tools | Search this Thread | Rate Thread | Display Modes |
07-30-2000, 10:27 AM
|
#1 |
|
Member (6 bit)
Join Date: Jun 2000
Posts: 59
|
FYI...article @ link below.
http://www.zdnet.com/zdnn/stories/ne...kpt=hud0004200 |
|
|
|
07-30-2000, 11:33 AM
|
#2 |
|
Member (9 bit)
Join Date: Apr 2000
Location: Midlands England
Posts: 458
|
This is an interesting development following a draft memo in April by the IETF http://www.ietf.org. in which they concluded that the HTTP State Management Mechanism
(cookies to you and me), were not desirable.IETF do think alternatives exist, which are preferable because of the lack of security afforded . A similar capability can be achieved using a 'bare' HTTP protocol without state management extensions. The IETF reccommend cookies only if the user is aware that session state is being maintained and consents to it, and that the user can delete it at any time. It also makes the very important point that cookies are not usually encrypted, and can be readily intercepted. The problem of course,is that cookies are useful, such as in single click shopping.However it is this use, including the 'single click' and 'double click' could lead to fraud. Whether voluntary codes of practice are implemented, or legislation is brought in, this can only apply to the USA.The internet being what it is, it will be very difficult to control cookie mis-use from other countries. |
|
|
|
|
| Bookmarks |
| Thread Tools | Search this Thread |
| Display Modes | Rate This Thread |
|
|
Linear Mode
