1 Introduction 1.1 The P3P1.0 Specification 1.1.1 Goals and Capabilities of P3P1.0 1.1.2 Example of P3P in Use 1.1.3 P3P Policies 1.1.4 P3P User Agents 1.1.5 Implementing P3P1.0 on Servers 1.1.6 Future Versions of P3P 1.2 About this Specification 1.3 Terminology 2 Referencing Policies 2.1 Overview and Purpose of Policy References 2.2 Locating Policy Reference Files 2.2.1 Well-Known Location 2.2.2 HTTP Headers 2.2.3 The HTML link Tag 2.2.4 HTTP ports and other protocols 2.3 Policy Reference File Syntax and Semantics 2.3.1 Example Policy Reference File 2.3.2 Policy Reference File Definition 2.3.2.1 Policy reference file processing 2.3.2.1.1 Significance of order 2.3.2.1.2 Wildcards in policy reference files 2.3.2.2 The META and POLICY-REFERENCES elements 2.3.2.3 Policy reference file lifetimes and the EXPIRY element 2.3.2.3.1 Motivation and mechanism 2.3.2.3.2 The EXPIRY element 2.3.2.3.3 Use of HTTP headers 2.3.2.3.4 Error handling for policy reference file lifetimes 2.3.2.4 The POLICY-REF element 2.3.2.5 The INCLUDE and EXCLUDE elements 2.3.2.6 The HINT element 2.3.2.7 The COOKIE-INCLUDE and COOKIE-EXCLUDE elements 2.3.2.8 The METHOD element 2.3.3 Applying a Policy to a URI 2.3.4 Forms and Related Mechanisms 2.4 Additional Requirements 2.4.1 Non-ambiguity 2.4.2 Multiple Languages 2.4.3 The Safe Zone 2.4.4 Non-discrimination of Policies 2.4.5 Security of Policy Transport 2.4.6 Policy Updates 2.4.7 Absence of Policy Reference File 2.4.8 Asynchronous Evaluation 2.5 Example Scenarios 3 Policy Syntax and Semantics 3.1 Example policies 3.1.1 English language policies 3.1.2 XML encoding of policies 3.2 Policies 3.2.1 The POLICIES element 3.2.2 The POLICY element 3.2.3 The TEST element 3.2.4 The ENTITY element 3.2.5 The ACCESS element 3.2.6 The DISPUTES element 3.2.7 The REMEDIES element 3.3 Statements 3.3.1 The STATEMENT element 3.3.2 The CONSEQUENCE element 3.3.3 The NON-IDENTIFIABLE element 3.3.4 The PURPOSE element 3.3.5 The RECIPIENT element 3.3.6 The RETENTION element 3.3.7 The DATA-GROUP and DATA elements 3.4 Categories and the CATEGORIES element 3.5 Extension Mechanism: the EXTENSION element 3.6 Import and Export of User Preferences 4 Compact Policies 4.1 Referencing Compact Policies 4.2 Compact Policies Vocabulary 4.2.1 Compact ACCESS 4.2.2 Compact DISPUTES 4.2.3 Compact REMEDIES 4.2.4 Compact NON-IDENTIFIABLE 4.2.5 Compact PURPOSE 4.2.6 Compact RECIPIENT 4.2.7 Compact RETENTION 4.2.8 Compact CATEGORIES 4.2.9 Compact TEST 4.3 Compact Policy Scope 4.4 Compact Policy Lifetime 4.5 Transforming a P3P Policy to a Compact Policy 4.6 Transforming a Compact Policy to a P3P Policy 5 Data schemas 5.1 Natural Language Support for Data Schemas 5.2 Data Structures 5.3 The DATA-DEF and DATA-STRUCT elements 5.3.1 Categories in P3P Data Schemas 5.3.2 P3P Data Schema Example 5.3.3 Use of data element names 5.4 Persistence of data schemas 5.5 Basic Data Structures 5.5.1 Dates 5.5.2 Names 5.5.3 Logins 5.5.4 Certificates 5.5.5 Telephones 5.5.6 Contact Information 5.5.6.1 Postal 5.5.6.2 Telecommunication 5.5.6.3 Online 5.5.7 Access Logs and Internet Addresses 5.5.7.1 URI 5.5.7.2 ipaddr 5.5.7.3 Access Log Information 5.5.7.4 Other HTTP Protocol Information 5.6 The base data schema 5.6.1 User Data 5.6.2 Third Party Data 5.6.3 Business Data 5.6.3 Dynamic Data 5.7 Categories and Data Elements/Structures 5.7.1 Fixed-Category Data Elements/Structures 5.7.2 Variable-Category Data Elements/Structures 5.8 Using Data Elements 6 Appendices Appendix 1: References (Normative) Appendix 2: References (Non-normative) Appendix 3: The P3P base data schema Definition (Normative) Appendix 4: XML Schema Definition (Normative) Appendix 5: XML DTD Definition (Non-normative) Appendix 6: ABNF Notation (Non-normative) Appendix 7: P3P Guiding Principles (Non-normative) Appendix 8: Working Group Contributors (Non-normative) |