On Thu, 05 May 2011 00:12:06 +0200, Bjartur Thorlacius <svartma...@gmail.com> wrote:

On 5/3/11, Cameron Heavon-Jones <cmhjo...@gmail.com> wrote:

There are a number of resources which are thought of having an 'application' scope which may make sense to be collated into a
single manifest and with the ability for an agent to manage it as
such.

Yeah, if a single entity edits and signs multiple resources, it's
unreasonable to trust one but not another.

If I understand correctly, I disagree. I might trust a given entity sometimes, or with some kinds of information, without wanting to simply say "sure whatever you want". That's probably for the "hard-to-use mode" in the UI, but I think it's legitimate. In practice, even given something as simple as twitter's geolocation request I *sometimes* allow it to know where I am and sometimes don't.

I understand that complicating the UI for this makes the simple things hard, which is wrong. But the complicated things should be possible - and given the current trend in privacy requirements in Europe, it's probably a good idea to make it at least *possible* to do something more detailed than the *all or nothing* approach for those service providers who want to differentiate by allowing for a more graded approach and the users who want to take advantage of that.

cheers

Chaals

--
Charles McCathieNevile  Opera Software, Standards Group
    je parle français -- hablo español -- jeg lærer norsk
http://my.opera.com/chaals       Try Opera: http://www.opera.com

Reply via email to