Internet Explorer Privacy Features

Download Report

Transcript Internet Explorer Privacy Features 

P3P & Internet Explorer 6.0
New York – Feb. 4, 2002
Before We Discuss IE 6.0…
Your One-stop P3P Resource
http://www.p3ptoolbox.org
Implementation
guide
Power Points
Links
Key outside
resources
P3P & Internet Explorer 6.0
Cookie Management

Earlier IE Versions:



“Reject” all, “accept” all, “prompt”
Cookies
 login, customization or advertising
 How do you know?
Same action applied to all cookies
indiscriminately
P3P in Internet Explorer 6.0

Based on the Network Advertising
Initiative

Merging of online habits with offline
databases (personally-identifiable
information)

Opt-out of data collection
How Does This Work?



Processes cookies based on presence
and contents of P3P compact policies
Differentiates between cookies based
on party
 First party: Domain a Web user is
visiting (www.example.com)
 Third party: Any other domain serving
content (www.examplestore.com or
www.catalog.com)
Displays, but does not process, full, or
verbose, P3P policies
Types of P3P-based Policies

Verbose P3P Policy (Mandatory)

XML file with complete description of site
privacy policies

Compact P3P Policy (Optional)

1-line description of site privacy policy

Found in HTTP Header

Served by the provider of the cookie
Compact Policy Example
Compact Policy:
P3P: CP=“IVA OTR ONL”


Individual Analysis

Other Recipients

Online Contact Information
Policies could have more tokens, such as
which data is available for access
Status Icon: First Encounter
User Experience
Help Topics


Explains
privacy issues
with cookies
Explains how to
change privacy
settings
User Experience
Privacy Settings

Privacy Tab slider

Medium = Default

Highest = Block All
Cookies


Lowest = Allow All
Cookies


1st and 3rd
1st and 3rd
Import

XML Privacy
settings file
User Experience
Status Icon




Web site uses
cookies
Privacy
Policies don’t
match settings
Cookies are
restricted
User notified
User Experience
Advanced Privacy Settings

Overrides
automatic cookie
handling

Control over 1st &
3rd Party cookies

Users can exempt
session cookies
from first two
options
What Does This Mean?

At medium (default) setting:





In addition:


Third party cookies without compact
policies are blocked
First party cookies are accepted
Third parties will not be able to collect
some information.
Graphics may not appear
All settings medium & above will block at
least some third party cookies
Web site functionality may be
compromised
Additional Information
P3P Toolbox:


W3C: www.w3c.org/P3P



http://www.p3ptoolbox.org/browser
Deployment guide
http://www.w3.org/TR/p3pdeployment
Candidate Recommendation
http://www.w3.org/TR/P3P/
MSDN article


http://msdn.microsoft.com/ie and read the
material on IE 6 privacy
Contact [email protected] with
questions