BRUSSELS Greece February 18, 2011 25 May 2011
The new type of cookies support user-identification in a persistent manner and do not have enough transparency of how they are being used. Therefore, their security and privacy implications are not easily quantifiable. To mitigate the privacy implications, the Agency recommends, among other things, that:
"Much work is needed to make these next-generation cookies as transparent and user-controlled as regular HTTP cookies, as to safeguard the privacy and security aspects of consumers and business alike".
25 May 2011
For full paper; http://www.enisa.europa.eu/act/it/pat, or http://www.enisa.europa.eu/act/it/library/pp/cookies/
(Due to the length of the URLs, it may be necessary to copy and paste the hyperlinks into your Internet browser’s URL address field. Remove the space if one exists.)
SOURCE ENISA – European Network and Information Security Agency