As ZDNet's Mary Jo Foley notes, however, Google isn't the only company that was discovered to be taking advantage of the P3P loophole. Researchers from Carnegie Mellon University's CyLab say they alerted Microsoft to the vulnerability in 2010, and just two days ago the director of the lab, Lorrie Faith Cranor, wrote about about the issue again on the TAP blog (sponsored by Microsoft, incidentally), detailing how Facebook and others also skirt IE's ability to block cookies. Indeed, Facebook readily admits on its site that it does not have a P3P policy, explaining that the standard is "out of date and does not reflect technologies that are currently in use on the web," and that "most websites" also don't currently have P3P policies. On that matter, Microsoft said in a statement to Foley that the "IE team is looking into the reports about Facebook," but that it has "no additional information to share at this time."
Update: Google's Senior Vice President of Communications and Policy, Rachel Whetstone has now issued a statement in response to Microsoft's blog post. It can be found in full after the break.
Microsoft finds Google bypassed Internet Explorer's privacy settings too, but it's not alone (update: Google responds) originally appeared on Engadget on Mon, 20 Feb 2012 16:59:00 EDT. Please see our terms for use of feeds.
Permalink | | Email this | CommentsSource: http://feeds.engadget.com/~r/weblogsinc/engadget/~3/oFxakvhnl4E/
KEY JDS UNIPHASE JDA SOFTWARE GROUP JACK HENRY and ASSOCIATES IXYS
No comments:
Post a Comment