<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META content="text/html; charset=us-ascii" http-equiv=Content-Type>
<META name=GENERATOR content="MSHTML 8.00.6001.19019"></HEAD>
<BODY
style="WORD-WRAP: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space">
<DIV><SPAN class=104580015-09032011></SPAN><FONT face=Arial><FONT
color=#0000ff><FONT
size=2>They will only "wake up" after penalties are applied<SPAN
class=104580015-09032011> and then cry that there was not enough
time</SPAN>.</FONT></FONT></FONT></DIV>
<DIV><SPAN class=104580015-09032011></SPAN><SPAN
class=104580015-09032011></SPAN><FONT face=Arial><FONT color=#0000ff><FONT
size=2>-<SPAN class=104580015-09032011>Axel</SPAN></FONT></FONT></FONT></DIV>
<DIV> </DIV><BR>
<BLOCKQUOTE
style="BORDER-LEFT: #0000ff 2px solid; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; MARGIN-RIGHT: 0px"
dir=ltr>
<DIV dir=ltr lang=de class=OutlookMessageHeader align=left>
<HR tabIndex=-1>
<FONT size=2 face=Tahoma><B>From:</B> openid-specs-ab-bounces@lists.openid.net
[mailto:openid-specs-ab-bounces@lists.openid.net] <B>On Behalf Of </B>John
Bradley<BR><B>Sent:</B> Wednesday, March 09, 2011 3:55 PM<BR><B>To:</B>
openid-specs-ab@lists.openid.net<BR><B>Subject:</B> [Openid-specs-ab] Fwd: New
EU laws<BR></FONT><BR></DIV>
<DIV></DIV>Something to keep in mind with respect to session management.
<DIV><BR></DIV>
<DIV>Without seeing the regulation it is hard to know what to make of
it.</DIV>
<DIV><BR></DIV>
<DIV>I suppose every site in the EU might have to ask for permission to create
a session cookie on the persons computer before letting them in.</DIV>
<DIV><BR></DIV>
<DIV>I can't think of any alternative other than mutual TLS to do it.</DIV>
<DIV><BR></DIV>
<DIV>Though now that I think about it, it could be a way to push e-id
cards?</DIV>
<DIV><BR></DIV>
<DIV>John B.<BR>
<DIV><BR>
<DIV>Begin forwarded message:</DIV><BR class=Apple-interchange-newline>
<BLOCKQUOTE type="cite"><SPAN
style="WIDOWS: 2; TEXT-TRANSFORM: none; TEXT-INDENT: 0px; BORDER-COLLAPSE: separate; FONT: medium Helvetica; WHITE-SPACE: normal; ORPHANS: 2; LETTER-SPACING: normal; WORD-SPACING: 0px; -webkit-border-horizontal-spacing: 0px; -webkit-border-vertical-spacing: 0px; -webkit-text-decorations-in-effect: none; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px"
class=Apple-style-span><FONT size=4><FONT
face="Verdana, Helvetica, Arial"><SPAN style="FONT-SIZE: 10pt"><BR><A
href="http://www.scmagazineuk.com/new-laws-on-cookies-will-come-into-effect-from-25th-may/article/197821/?DCMP=EMC-SCUK_Newswire">http://www.scmagazineuk.com/new-laws-on-cookies-will-come-into-effect-from-25th-may/article/197821/?DCMP=EMC-SCUK_Newswire</A><SPAN
class=Apple-converted-space> </SPAN><BR><BR><B>Websites will have to
gain ‘explicit consent' from visitors to store or access information on
their computers from 25th May.<BR></B><BR>A new European e-Privacy directive
has been announced today and will affect any business tracking users via
their cookies online. Exact details from the Department for Culture, Media
and Sport (DCMS) are currently being drawn up and will not be available
until the end of May, but enforcement and penalties are not expected in the
short term as businesses are given a window to ‘address their use of
cookies'.<BR><BR>The new law is an amendment to the EU's Privacy and
Electronic Communications Directive and will require UK businesses and other
organisations to obtain consent from visitors to their websites in order to
store and retrieve usage information from users' computers.<BR><BR>Speaking
today, the Information Commissioner Christopher Graham warned UK businesses
and other organisations running websites that they must ‘wake up' to the EU
legislation.<BR><BR>He said: “While the roll out of this new law will be a
challenge, it will have positive benefits as it will give people more choice
and control over what information businesses and other organisations can
store on and access from consumers' own computers.<BR><BR>“We are
proactively working with the government, businesses and the public sector to
find a workable solution. We recognise that the internet as we know it today
depends on the widespread use of cookies and there are of course legitimate
business reasons for using them. So we are clear that these changes must not
have a detrimental impact on consumers nor cause an unnecessary burden on UK
businesses. One option being considered is to allow consent to the use of
cookies to be given via browser settings.<BR><BR>“Once the new regulations
are published there will be a major job of education and guidance to be
undertaken. In the meantime, both the business community and public sector
organisations need to start thinking clearly about how they will meet the
requirements of the new directive.”<BR><BR>The Information Commissioner's
Office will be responsible for regulation, while the Department for Culture,
Media and Sport will lead on the implementation on the new measures in the
UK.<BR><BR>Minister for culture, communications and the creative industries,
Ed Vaizey, said: “Revisions to the e-Privacy directive will provide
consumers with more choice and control over their internet experience. But
at the same time we need to make sure these changes do not make using the
internet more difficult.<BR><BR>“Businesses need to be working to address
the way they use cookies. We recognise that work will not be complete by the
implementation deadline. The government is clear that it will take time for
meaningful solutions to be developed, evaluated and rolled
out.”<BR><BR></SPAN></FONT></FONT>____________________________________________________________<BR>You
receive</SPAN></BLOCKQUOTE></DIV><BR></DIV></BLOCKQUOTE></BODY></HTML>