RE: I-D Action: draft-ietf-httpbis-client-hints-03.txt

"Mike O'Neill" <michael.oneill@baycloud.com> Sat, 03 December 2016 10:02 UTC

Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4B4BC129670 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Sat, 3 Dec 2016 02:02:48 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.797
X-Spam-Level:
X-Spam-Status: No, score=-9.797 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.001, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-2.896, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Xifh9tnHqV96 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Sat, 3 Dec 2016 02:02:46 -0800 (PST)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) (using TLSv1.2 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BDD1712966E for <httpbisa-archive-bis2Juki@lists.ietf.org>; Sat, 3 Dec 2016 02:02:46 -0800 (PST)
Received: from lists by frink.w3.org with local (Exim 4.80) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1cD76Z-0001Y5-Ha for ietf-http-wg-dist@listhub.w3.org; Sat, 03 Dec 2016 09:59:39 +0000
Resent-Date: Sat, 03 Dec 2016 09:59:39 +0000
Resent-Message-Id: <E1cD76Z-0001Y5-Ha@frink.w3.org>
Received: from titan.w3.org ([128.30.52.76]) by frink.w3.org with esmtps (TLS1.2:RSA_AES_128_CBC_SHA1:128) (Exim 4.80) (envelope-from <michael.oneill@baycloud.com>) id 1cD76N-0001VM-Am for ietf-http-wg@listhub.w3.org; Sat, 03 Dec 2016 09:59:27 +0000
Received: from n1plsmtpa01-02.prod.ams1.secureserver.net ([188.121.53.2]) by titan.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.84_2) (envelope-from <michael.oneill@baycloud.com>) id 1cD76F-0003IC-CY for ietf-http-wg@w3.org; Sat, 03 Dec 2016 09:59:21 +0000
Received: from ValeriesPC ([46.227.145.181]) by :SMTPAUTH: with SMTP id D75FcjjSQzB8pD75GcW2vL; Sat, 03 Dec 2016 02:58:18 -0700
From: "Mike O'Neill" <michael.oneill@baycloud.com>
To: <internet-drafts@ietf.org>, <i-d-announce@ietf.org>
Cc: <ietf-http-wg@w3.org>, "'public-privacy \(W3C mailing list\)'" <public-privacy@w3.org>
References: <148070210225.29664.2630836091018103593.idtracker@ietfa.amsl.com>
In-Reply-To: <148070210225.29664.2630836091018103593.idtracker@ietfa.amsl.com>
Date: Sat, 3 Dec 2016 09:58:01 -0000
Message-ID: <15ba01d24d4b$bbd65ec0$33831c40$@baycloud.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
X-Mailer: Microsoft Outlook 16.0
Thread-Index: AQJC775/vfb+bpuXLqJwOpSyCurBo6AUr/qQ
Content-Language: en-gb
X-CMAE-Envelope: MS4wfLVBZTPqnSk2JE21vXjE1dfzrsBCHvUU+AiC5v2j93FuQYxPyNtN9nI0BrvNHcRPrOCETBFhLsAjwcOlF4T3QJh9gbiVZgWkBJyMpoafFWxLMSrCiWyI PzjZ6rRr9YIsKFxjB7D0gtORKRJrDmdtsgd07NXCBlc4qUtGp8e/gZcUQrq8qbP0mBHKF/27xUNi0X/H4AUvMd2u0qppuycHZkQeZ7eEL50Dyiz7lkcvONAT 3WabtD/spdvHiFN7QoiZ278stWBZcuSxGvUeQzsPu9wn41z1SqY1GD3MQZIXpUyF
Received-SPF: pass client-ip=188.121.53.2; envelope-from=michael.oneill@baycloud.com; helo=n1plsmtpa01-02.prod.ams1.secureserver.net
X-W3C-Hub-Spam-Status: No, score=-7.5
X-W3C-Hub-Spam-Report: AWL=1.371, BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, W3C_AA=-1, W3C_DB=-1, W3C_IRA=-1, W3C_IRR=-3, W3C_WL=-1
X-W3C-Scan-Sig: titan.w3.org 1cD76F-0003IC-CY 6b9f654d36a28b2a2590cd81e6bd8b43
X-Original-To: ietf-http-wg@w3.org
Subject: RE: I-D Action: draft-ietf-httpbis-client-hints-03.txt
Archived-At: <http://www.w3.org/mid/15ba01d24d4b$bbd65ec0$33831c40$@baycloud.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/33101
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

I worry that this makes fingerprinting easier for tracking servers, especially for subresources. 
It is true that these capabilities are already available via JS but only for browsing contexts and the extra turnaround forces some stickiness. This would make these granular user-agent capabilities immediately available to any resource, without need for a round trip.

I think that at least the availability of a user opt-in should be a MUST.

-----Original Message-----
From: internet-drafts@ietf.org [mailto:internet-drafts@ietf.org] 
Sent: 02 December 2016 18:08
To: i-d-announce@ietf.org
Cc: ietf-http-wg@w3.org
Subject: I-D Action: draft-ietf-httpbis-client-hints-03.txt


A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Hypertext Transfer Protocol of the IETF.

        Title           : HTTP Client Hints
        Author          : Ilya Grigorik
	Filename        : draft-ietf-httpbis-client-hints-03.txt
	Pages           : 13
	Date            : 2016-12-02

Abstract:
   An increasing diversity of Web-connected devices and software
   capabilities has created a need to deliver optimized content for each
   device.

   This specification defines a set of HTTP request header fields,
   colloquially known as Client Hints, to address this.  They are
   intended to be used as input to proactive content negotiation; just
   as the Accept header field allows clients to indicate what formats
   they prefer, Client Hints allow clients to indicate a list of device
   and agent specific preferences.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-httpbis-client-hints/

There's also a htmlized version available at:
https://tools.ietf.org/html/draft-ietf-httpbis-client-hints-03

A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-ietf-httpbis-client-hints-03


Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/