Printed from

Google claims Microsoft sat on cookie issue for decade

updated 10:20 pm EST, Mon February 20, 2012

Google defends against Microsoft cookie claims

Google's Senior Communications VP Rachel Whetstone claimed Microsoft was being dishonest in making claims of suspicious browser cookie circumventions in Internet Explorer 9 and elsewhere. The executive argued that Microsoft had effectively ignored the issue since 2002, when it had implemented the P3P approach of requiring a cookie state its intent. Microsoft not only knew about the "loophole" of using an undefined intent for years, letting Amazon and its recent investment target Facebook use the trick, but knew that P3P would break the modern Internet regardless

Whetstone more than once referenced a Carnegie Mellon research paper from 2010 that not only showed just a third of studied websites using P3P in their cookies the way Microsoft wanted, but that Microsoft itself had been suggesting the same code change Google was using. Privacy firm TRUSTe had added that under 12 percent of its own sites were honoring P3P and that it couldn't be counted on. Microsoft's own and MSN websites weren't sending proper P3P information.

Of the minority that did honor the demands, it was the DoubleClick ads, the very elements framing the Google +1 requests, according to the Senior VP. It was only the +1 elements that needed the exception, which to Google was unavoidable.

"It is well known -- including by Microsoft -- that it is impractical to comply with Microsoft's request while providing modern web functionality," Whetstone argued, pointing to Google's own notice and one from Facebook that both showed public knowledge of these practices.

The commentary effectively accused Microsoft of further being selective with interpretations in order to tarnish Google when convenient rather than raising a legitimate security issue. Google was using a form trick to achieve a similar functionality in Safari and hadn't been accused of conspiracy, although Apple had said it might alter Safari to close the gap.

The issue became public when a close examination showed that Google tracking cookies, and those of a few third-party advertisers, were appearing even when Safari (including mobile Safari) and later IE9 users had settings enabled to block third-party cookies. Both Apple and Microsoft are now known to use settings that can be relatively easily circumvented, although most sites don't use the Google trick or follow the P3P rules and are blocked properly.

By Electronista Staff


  1. icewing

    Fresh-Faced Recruit

    Joined: May 2008



    So that makes it ok, then?

  1. Bobfozz

    Fresh-Faced Recruit

    Joined: Jul 2008


    comment title

    your comment

  1. Bobfozz

    Fresh-Faced Recruit

    Joined: Jul 2008


    MS comment is irrelevant...

    the thing is Google did it and they hid behind "public" postings which few notice (and they like it that way). The POINT is, Google is a privacy invader. Congress wants to know more but what will they do about it? My guess... zippo.

  1. joecab

    Fresh-Faced Recruit

    Joined: Apr 2004



    "Yeah we broke into your house, but you left your back door unlocked for years so you must have been fine with it"

Login Here

Not a member of the MacNN forums? Register now for free.


Network Headlines


Most Popular


Recent Reviews

Apple 13-inch MacBook Pro (Early 2015)

Although the new darling of the Apple MacBook line up is the all-new MacBook, Apple has given its popular 13-inch MacBook Pro with Ret ...

Seagate Wireless

It seems like no matter how much internal storage is included today's mobile devices, we, as users, will always find a way to fill the ...

Lenovo Yoga Tablet 2 (Android, 10.1-inch)

Lenovo is building a bigger name for itself year after year, including its devices expanding beyond desktop computers. The company's l ...



Most Commented


Popular News