Slashdot Mirror

← Back to Stories (view on slashdot.org)

HTML5 Draws Concern Over Risks To Privacy

Posted by CmdrTaco on from the are-you-scared-yet dept.

Hugh Pickens writes "The NY Times reports that in the next few years, HTML5 will provide a powerful new suite of capabilities to Web developers that could give marketers and advertisers access to many more details about computer users' online activities. The new Web language and its additional features present more tracking opportunities because the technology uses a process in which large amounts of data can be collected and stored on the user's hard drive while online. Because of that process, advertisers and others could, experts say, see weeks or even months of personal data that could include a user's location, time zone, photographs, text from blogs, shopping cart contents, e-mails and a history of the Web pages visited. 'HTML5 opens Pandora's box of tracking in the Internet,' says Pam Dixon, the executive director of the World Privacy Forum. Meanwhile Ian Jacobs, head of communications at the World Wide Web consortium, says the development process for HTML5 will include a public review. 'There is accountability,' Jacobs says. 'This is not a secret cabal for global adoption of these core standards.'"

9 of 163 comments (clear)

  1. Browsers... by the_one_wesp · · Score: 5, Insightful

    Browsers are still going to be the ones in charge of that kind of storage, just like history, cookies and other current way's of tracking user information. It's just going to require users to CONTINUE being careful about their web usage. I don't see that anything is changing.

    1. Re:Browsers... by PopeRatzo · · Score: 4, Funny

      chmod -R a-w is your friend.

      Is he a rapper?

      Oh, it's something on the computer?

      Where is the icon for that app? It's not one of those things I have to type into the little black box with the white letters is it? I don't think my Windows 7 computer has one of those any more.

      --
      You are welcome on my lawn.
  2. FUD by The+MAZZTer · · Score: 5, Informative

    Article reads like it was written by someone who has no idea about the time and effort taken to sandbox sites from each other. Sounds like he's talking about LocalStorage or client side DBs, which can hold more data but are no more privacy risks than a single unique ID stored in a cookie linked to an unlimited REMOTE database. Accessing web history is not a part of HTML5, more FUD there, and browser vendors are working to block JS from being able to access that information. They also seem to refer to geolocation, which in Chrome at least has to be explicitly granted to sites unless you turn it on globally.

    The "supercookie" thing is perhaps the one legitimate thing mentioned but browsers should (or probably will if they don't already) clear out most of those locations (except Flash, but you can't blame the browsers for that really) when you clear your private data, which at least Firefox and Chrome can do for you.

    As for "buckets to put tracking information into" why bother relying on "buckets" on the client which may or may not exist, are limited in size, may change or be emptied at any time, etc, when you can buy as many "buckets" as you want server-side and store virtually unlimited data about them?

    1. Re:FUD by TheRaven64 · · Score: 4, Informative

      The browser doesn't allow the plugin to write to the disk, the OS does. Plugins are just libraries - they can do anything that any binary can do. If you are using nspluginwrapper on *NIX, you can make plugins run in a chroot and clean up after them, but file accesses do not go via the browser and 'modern' operating systems do not provide any facilities for running subprocesses that validate system calls via the parent.

      --
      I am TheRaven on Soylent News
  3. Re:Don't cookies do the same thing? by captainpanic · · Score: 4, Interesting

    So, the actual news is that although we get new technology, old problems still aren't fixed?

    The fact that with current technology all this data is already available doesn't mean that it does not need to be fixed in the future.

  4. Didn't the '90s teach us? by Darkness404 · · Score: 4, Insightful

    Didn't the 90s (And early 2000s) teach us anything? If HTML isn't implemented in essentially the same way across all browsers the Internet will stagnant again and we will turn to cross-platform plugins like Flash to actually get stuff done.

    --
    Taxation is legalized theft, no more, no less.
  5. AdBlock! by Meneth · · Score: 5, Informative
    My favourite filter:

    *$third-party

    Blocks all kinds of crap. Speeds up browsing, too. Even on Slashdot it blocks Google Analytics and something from demandbase.com.

    Of course, you'll need lots of exception rules, but if you want to be aware of where your browser goes to get its files, it's well worth it.

  6. Re:Don't cookies do the same thing? by John+Hasler · · Score: 5, Insightful

    > Being able to store things with flash is fine...

    No it isn't. Creatures such as Flash should never be able to store or read anything. They should be locked in their sandboxes with only the input the browser chooses to give them.

    --
    Warning: this article may contain humor, sarcasm, parody, and perhaps even irony. Read at your own risk.
  7. How, Specifically? by Doc+Ruby · · Score: 4, Interesting

    What features does HTML5 include that let one server access any data other than that created by that server, or by the client user through the HTML GUI sent by that server? Why should any client state be available to the server, except the same kind of client-side feature list of supported media types and browser version that we've had since HTML1.0?

    --

    --
    make install -not war