On 11/5/12 6:47 PM, "Brady Eidson" <[email protected]> wrote:
> >> And/or coming up with an API to allow application developers >> to close sessions on a per origin basis and benefit from related >> security/privacy guarantees (wiping-out session storage, cookies, etc.). > >Sites can already clean up individual session-ey nuggets on a >case-by-case basis. > >I'm not sure I like the idea of giving them the nuclear option as they'll >just start using that liberally instead of thinking things through. This >could cause excess i/o and/or lock contention where such semantics are >defined. Nuclear options have privacy guarantees which other options don't have. That's also something to consider. --tobie
