Google reduces cookie lifespan by 30 years

Google has tipped its hand to privacy advocates and agreed to cut the lifespan of user cookies by up to 30 years -- instead, the search giant will implement a rolling two-year auto-renew policy.

Cookies are small files stored on a computer so that it can be recognised when it revisits Web sites, enabling the site to remember the user's preferences for things like e-commerce and sites that require log-in.

Under the new policy, Google cookies will expire after two years instead of in 2038, according to the official Google Blog.

"After listening to feedback from our users and from privacy advocates, we've concluded that it would be a good thing for privacy to significantly shorten the lifetime of our cookies -- as long as we could find a way to do so without artificially forcing users to re-enter their basic preferences at arbitrary points in time," writes Peter Fleischer, global privacy counsel.

"Users who do not return to Google will have their cookies auto-expire after 2 years. Regular Google users will have their cookies auto-renew, so that their preferences are not lost."

In practice, however, only a miniscule number of people will be affected by the change. That's because if anyone visits Google even once in the next two years, the cookie expiration date will be extended. In other words, visiting on July 16, 2007, will reset the cookie to expire around July 16, 2009. Visiting any time between those two dates will automatically extend the life of the cookie -- renewing it, effectively -- for another two years.

Advertisement

Talkback 2 comments

    Eternal Cookie... Damian S -- 17/07/07

    So the reality is that we've moved from a cookie with a fixed expiry date to a cookie that in effect will never expire if you use the service even once every two years, as it resets the date every time.

    A classic case of the devil being in the detail!!

    Bury, not nibble, my cookie Peter Tilbrook -- 18/07/07

    Two years my arse. A proper cookie can be useful but any decent web developer will ensure it is killed when the client (browser) is closed. Bury my cookies with me if they live longer than your average non-crash Windows or browser session. I am thinking three days tops.

Add your opinion

Latest Videos

Blogs

  • Darren Greenwood Telecom NZ savings damage prospects
    If Telecom NZ wants to have any of the NZ$1.5 billion the government intends to spend on its new broadband network, it had better think long and hard before offshoring 1500 jobs.
  • Array iiNet: The whys and what nows
    Last week the Federal Court ruled that internet service providers are not responsible for copyright violation by their customers. This is an important decision not just for iiNet, which spent around $4 million defending the case, but for all ISPs in Australia and, indeed, globally.
  • Array Govt, hurry up with releasing data
    A programmer scraped data from the My School website to make some really cool heat maps showing regions of smart schools — no thanks to the government, which didn't supply the data in any useful kind of format.
  • More blogs »

Tags

Back to top

Featured