Tom Van Goethem

I'd be interested to join as co-author or reviewer

I'd be happy to take the Chapter Lead role, @foxdavidj!

Would this Friday at 16:30 CEST work for everyone? (@spanicker @SaptakS @nrllh @miketaylr @iskander-sanchez-rola @max-ostapenko @foxdavidj) Also a gentle reminder to join the [#web-almanac-privacy](https://httparchive.slack.com/archives/C023K97SR8U) channel on Slack

I added a rough sketch of the outline; some updates are likely to follow this weekend :-)

@foxdavidj The outline is there; with the new observer custom metrics we'll be looking at property accesses and function calls that are frequently used by fingerprinting scripts. For the former,...

@foxdavidj We're indeed lagging behind on the text. I will start writing tomorrow, and aim to finish by Wednesday (ideally with some help from @spanicker & @nrllh). While the text...

@foxdavidj I've finished the last data-related section. Will make sure that the introduction & conclusion sections are done by tomorrow.

Would be happy to join as a reviewer!

From what I understand, with the "new site" dimension you're mainly interested in sites that were created/developed recently? How about using Certificate Transparency logs for that? Should be feasible to...

When the opaque response is compressed, and the `Content-Length` header is present, it's possible to launch a compression-based attack (described in more detail [here](https://tom.vg/2016/08/request-and-conquer/#compression-based-attacks)) with this size-exposing attack. Similar to...