On Wed, Mar 4, 2020, at 06:11, Brotman, Alex wrote: > https://datatracker.ietf.org/doc/draft-brotman-rdbd/
As I think I mentioned before, there is similar work going on at higher layers of the stack. See https://github.com/krgovind/first-party-sets That work acknowledges a number of things, most critically what policy decisions might be made as a result of these declarations. The policies that are bound to these declarations could determine the shape of the design. In that work, the question of whether declarations can be trusted has turned out to be a massive problem. The relevant policy being contemplated is the sharing of Web state (e.g., cookies). In that context, there are incentive structures in place that lead to the strong possibility that some entities would willingly declare a "relationship" with others just to circumvent certain aspects of applicable policies. That in turn means that the design of the system has to take this style of abuse into account. To me, that indicates that knowing something about the policies that would be applied is not incidental to the work. Separately, it appears as though there is no ready means of disavowal other than expiration of the records. Having a means for repudiation of declarations would be good. _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
