html5/webdatabase/Overview.html - diff

Return to Overview.html CVS log

Up to [Public] / html5 / webdatabase

Diff for /html5/webdatabase/Overview.html between versions 1.72 and 1.87

Webmaster

version 1.72, 2010/02/22 23:03:49	version 1.87, 2010/05/12 01:17:21
Line 1	Line 1
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"><html lang="en-US-x-Hixie"><title>Web SQL Database</title><style type="text/css">	<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01//EN"><html lang="en-US-x-Hixie"><title>Web SQL Database</title><style type="text/css">
pre { margin-left: 2em; white-space: pre-wrap; }	pre { margin-left: 2em; white-space: pre-wrap; }
h2 { margin: 3em 0 1em 0; }	h2 { margin: 3em 0 1em 0; }
h3 { margin: 2.5em 0 1em 0; }	h3 { margin: 2.5em 0 1em 0; }
Line 24	Line 24
@media screen { code { color: orangered; } code :link, code :visited { color: inherit; } }	@media screen { code { color: orangered; } code :link, code :visited { color: inherit; } }
var sub { vertical-align: bottom; font-size: smaller; position: relative; top: 0.1em; }	var sub { vertical-align: bottom; font-size: smaller; position: relative; top: 0.1em; }
table { border-collapse: collapse; border-style: hidden hidden none hidden; }	table { border-collapse: collapse; border-style: hidden hidden none hidden; }
table thead { border-bottom: solid; }	table thead, table tbody { border-bottom: solid; }
table tbody th:first-child { border-left: solid; }	table tbody th:first-child { border-left: solid; }
table tbody th { text-align: left; }	table tbody th { text-align: left; }
table td, table th { border-left: solid; border-right: solid; border-bottom: solid thin; vertical-align: top; padding: 0.2em; }	table td, table th { border-left: solid; border-right: solid; border-bottom: solid thin; vertical-align: top; padding: 0.2em; }
Line 141	Line 141
.example { display: block; color: #222222; background: #FCFCFC; border-left: double; margin-left: 2em; padding-left: 1em; }	.example { display: block; color: #222222; background: #FCFCFC; border-left: double; margin-left: 2em; padding-left: 1em; }
td > .example:only-child { margin: 0 0 0 0.1em; }	td > .example:only-child { margin: 0 0 0 0.1em; }

.tall-and-narrow {
font-size: 0.6em;
column-width: 25em;
column-gap: 1em;
-moz-column-width: 25em;
-moz-column-gap: 1em;
-webkit-column-width: 25em;
-webkit-column-gap: 1em;
}

ul.domTree, ul.domTree ul { padding: 0 0 0 1em; margin: 0; }	ul.domTree, ul.domTree ul { padding: 0 0 0 1em; margin: 0; }
ul.domTree li { padding: 0; margin: 0; list-style: none; position: relative; }	ul.domTree li { padding: 0; margin: 0; list-style: none; position: relative; }
ul.domTree li li { list-style: none; }	ul.domTree li li { list-style: none; }
Line 193	Line 183
<p><a href="http://www.w3.org/"><img alt="W3C" height="48" src="http://www.w3.org/Icons/w3c_home" width="72"></a></p>	<p><a href="http://www.w3.org/"><img alt="W3C" height="48" src="http://www.w3.org/Icons/w3c_home" width="72"></a></p>
<h1>Web SQL Database</h1>	<h1>Web SQL Database</h1>

<h2 class="no-num no-toc" id="editor-s-draft-22-february-2010">Editor's Draft 22 February 2010</h2>	<h2 class="no-num no-toc" id="editor-s-draft-12-may-2010">Editor's Draft 12 May 2010</h2>
<dl><dt>Latest Published Version:</dt>	<dl><dt>Latest Published Version:</dt>
<dd><a href="http://www.w3.org/TR/webdatabase/">http://www.w3.org/TR/webdatabase/</a></dd>	<dd><a href="http://www.w3.org/TR/webdatabase/">http://www.w3.org/TR/webdatabase/</a></dd>
<dt>Latest Editor's Draft:</dt>	<dt>Latest Editor's Draft:</dt>
Line 206	Line 196
<dt>Editors:</dt>	<dt>Editors:</dt>
<dd><a href="mailto:ian@hixie.ch">Ian Hickson</a>, Google, Inc.</dd>	<dd><a href="mailto:ian@hixie.ch">Ian Hickson</a>, Google, Inc.</dd>
</dl><p class="copyright"><a href="http://www.w3.org/Consortium/Legal/ipr-notice#Copyright">Copyright</a>	</dl><p class="copyright"><a href="http://www.w3.org/Consortium/Legal/ipr-notice#Copyright">Copyright</a>
© 2009 <a href="http://www.w3.org/"><abbr title="World Wide	© 2010 <a href="http://www.w3.org/"><abbr title="World Wide
Web Consortium">W3C</abbr></a><sup>®</sup> (<a href="http://www.csail.mit.edu/"><abbr title="Massachusetts	Web Consortium">W3C</abbr></a><sup>®</sup> (<a href="http://www.csail.mit.edu/"><abbr title="Massachusetts
Institute of Technology">MIT</abbr></a>, <a href="http://www.ercim.org/"><abbr title="European Research	Institute of Technology">MIT</abbr></a>, <a href="http://www.ercim.org/"><abbr title="European Research
Consortium for Informatics and Mathematics">ERCIM</abbr></a>, <a href="http://www.keio.ac.jp/">Keio</a>), All Rights Reserved. W3C	Consortium for Informatics and Mathematics">ERCIM</abbr></a>, <a href="http://www.keio.ac.jp/">Keio</a>), All Rights Reserved. W3C
Line 230	Line 220
<a href="http://lists.whatwg.org/pipermail/whatwg-whatwg.org/">archives</a>),	<a href="http://lists.whatwg.org/pipermail/whatwg-whatwg.org/">archives</a>),
<!-- UNDER NO CIRCUMSTANCES IS THE PRECEDING SENTENCE TO BE REMOVED OR EDITED WITHOUT TALKING TO IAN FIRST -->	<!-- UNDER NO CIRCUMSTANCES IS THE PRECEDING SENTENCE TO BE REMOVED OR EDITED WITHOUT TALKING TO IAN FIRST -->

or submit them using <a href="http://www.w3.org/Bugs/Public/enter_bug.cgi?product=WebAppsWG&component=Web%20Storage">our	or submit them using <a href="http://www.w3.org/Bugs/Public/enter_bug.cgi?assigned_to=ian%40hixie.ch&blocked=&bug_file_loc=http%3A%2F%2F&bug_severity=normal&bug_status=NEW&comment=&component=Web%20Database%20%28editor%3A%20Ian%20Hickson%29&contenttypeentry=&contenttypemethod=autodetect&contenttypeselection=text%2Fplain&data=&dependson=&description=&form_name=enter_bug&keywords=&maketemplate=Remember%20values%20as%20bookmarkable%20template&op_sys=All&priority=P5&product=WebAppsWG&qa_contact=member-webapi-cvs%40w3.org&rep_platform=All&short_desc=&target_milestone=---&version=unspecified">our
public bug database</a>.	public bug database</a>.

All feedback is welcome.</p><!-- stability (required) --><p>Implementors should be aware that this specification is not	All feedback is welcome.</p><!-- stability (required) --><p>Implementors should be aware that this specification is not
Line 265	Line 255
Working Group</a> is the W3C working group responsible for this	Working Group</a> is the W3C working group responsible for this
specification's progress along the W3C Recommendation track.	specification's progress along the W3C Recommendation track.

This specification is the 22 February 2010 Editor's Draft.	This specification is the 12 May 2010 Editor's Draft.
</p><!-- required patent boilerplate --><p>This document was produced by a group operating under the <a href="http://www.w3.org/Consortium/Patent-Policy-20040205/">5	</p><!-- required patent boilerplate --><p>This document was produced by a group operating under the <a href="http://www.w3.org/Consortium/Patent-Policy-20040205/">5
February 2004 W3C Patent Policy</a>. W3C maintains a <a href="http://www.w3.org/2004/01/pp-impl/42538/status" rel="disclosure">public list of	February 2004 W3C Patent Policy</a>. W3C maintains a <a href="http://www.w3.org/2004/01/pp-impl/42538/status" rel="disclosure">public list of
any patent disclosures</a> made in connection with the deliverables	any patent disclosures</a> made in connection with the deliverables
Line 300	Line 290
<ol>	<ol>
<li><a href="#user-tracking"><span class="secno">7.1 </span>User tracking</a></li>	<li><a href="#user-tracking"><span class="secno">7.1 </span>User tracking</a></li>
<li><a href="#sensitivity-of-data"><span class="secno">7.2 </span>Sensitivity of data</a></ol></li>	<li><a href="#sensitivity-of-data"><span class="secno">7.2 </span>Sensitivity of data</a></ol></li>
<li><a href="#security"><span class="secno">8 </span>Security</a>	<li><a href="#security-storage"><span class="secno">8 </span>Security</a>
<ol>	<ol>
<li><a href="#dns-spoofing-attacks"><span class="secno">8.1 </span>DNS spoofing attacks</a></li>	<li><a href="#dns-spoofing-attacks"><span class="secno">8.1 </span>DNS spoofing attacks</a></li>
<li><a href="#cross-directory-attacks"><span class="secno">8.2 </span>Cross-directory attacks</a></li>	<li><a href="#cross-directory-attacks"><span class="secno">8.2 </span>Cross-directory attacks</a></li>
Line 1252 interface <dfn id="sqltransactionsync">S	Line 1242 interface <dfn id="sqltransactionsync">S
sensitive; it's quite possible for e-mails, calendar appointments,	sensitive; it's quite possible for e-mails, calendar appointments,
health records, or other confidential documents to be stored in this	health records, or other confidential documents to be stored in this
mechanism.<p>To this end, user agents should ensure that when deleting data,	mechanism.<p>To this end, user agents should ensure that when deleting data,
it is promptly deleted from the underlying storage.<h2 id="security"><span class="secno">8 </span>Security</h2><h3 id="dns-spoofing-attacks"><span class="secno">8.1 </span>DNS spoofing attacks</h3><p>Because of the potential for DNS spoofing attacks, one cannot	it is promptly deleted from the underlying storage.<h2 id="security-storage"><span class="secno">8 </span>Security</h2><h3 id="dns-spoofing-attacks"><span class="secno">8.1 </span>DNS spoofing attacks</h3><p>Because of the potential for DNS spoofing attacks, one cannot
guarantee that a host claiming to be in a certain domain really is	guarantee that a host claiming to be in a certain domain really is
from that domain. To mitigate this, pages can use SSL. Pages using	from that domain. To mitigate this, pages can use SSL. Pages using
SSL can be sure that only pages using SSL that have certificates	SSL can be sure that only pages using SSL that have certificates
Line 1291 interface <dfn id="sqltransactionsync">S	Line 1281 interface <dfn id="sqltransactionsync">S
there is little reason to allow Web authors to control the character	there is little reason to allow Web authors to control the character
encoding used in the disk representation of the data, as all data in	encoding used in the disk representation of the data, as all data in
JavaScript is implicitly UTF-16.<h3 id="sql-injection"><span class="secno">8.5 </span>SQL injection</h3><p>Authors are strongly recommended to make use of the <code title="">?</code> placeholder feature of the <code title="dom-sqltransaction-executeSql"><a href="#dom-sqltransaction-executesql">executeSql()</a></code> method,	JavaScript is implicitly UTF-16.<h3 id="sql-injection"><span class="secno">8.5 </span>SQL injection</h3><p>Authors are strongly recommended to make use of the <code title="">?</code> placeholder feature of the <code title="dom-sqltransaction-executeSql"><a href="#dom-sqltransaction-executesql">executeSql()</a></code> method,
and to never construct SQL statements on the fly.<h2 class="no-num" id="references">References</h2><!--REFS--><p>All references are normative unless marked "Non-normative".</p><!-- Dates are only included for standards older than the Web,	and to never construct SQL statements on the fly.<h2 class="no-num" id="references">References</h2><!--REFS--><p>All references are normative unless marked "Non-normative".</p><!-- Dates are only included for standards older than the Web, because the newer ones keep changing. --><dl><dt id="refsCOOKIES">[COOKIES]</dt>
because the newer ones keep changing. --><dl><dt id="refsCOOKIES">[COOKIES]</dt>
<!--	<!--
<dd><cite><a href="http://www.ietf.org/rfc/rfc2109.txt">HTTP State	<dd><cite><a href="http://www.ietf.org/rfc/rfc2109.txt">HTTP State
Management Mechanism</a></cite>, D. Kristol, L. Montulli. IETF.</dd>	Management Mechanism</a></cite>, D. Kristol, L. Montulli. IETF.</dd>
<dd><cite><a href="http://www.ietf.org/rfc/rfc2965.txt">HTTP State Management	<dd><cite><a href="http://www.ietf.org/rfc/rfc2965.txt">HTTP State Management
Mechanism</a></cite>, D. Kristol, L. Montulli. IETF.</dd>	Mechanism</a></cite>, D. Kristol, L. Montulli. IETF.</dd>
-->	-->
<dd><cite><a href="http://tools.ietf.org/html/draft-abarth-cookie">HTTP State	<dd><cite><a href="http://tools.ietf.org/html/draft-ietf-httpstate-cookie">HTTP State
Management Mechanism</a></cite>, A. Barth. IETF.</dd>	Management Mechanism</a></cite>, A. Barth. IETF.</dd>

<dt id="refsDOMCORE">[DOMCORE]</dt>	<dt id="refsDOMCORE">[DOMCORE]</dt>

Removed from v.1.72
changed lines
	Added in v.1.87