In a peculiar development in web standards, the Internet Engineering Task Force (IETF) has published RFC 35140, introducing the "HTTP Do-Not-Stab" header - a mechanism allowing internet users to opt out of virtual stabbings from websites.
The new standard addresses the growing industry of "Stabbings as a Service" (SaaS), which has emerged over recent decades as web peripherals advanced to include stabbing capabilities. While many companies have integrated these features into their services, user feedback has indicated mixed feelings about receiving unexpected digital knife wounds.
The specification introduces a straightforward HTTP header "Do-Not-Stab: 1" that users can enable to express their preference against being stabbed while browsing. However, the standard clarifies that this setting must be explicitly chosen by users - browsers cannot enable it by default.
Microsoft has already announced partial support for the header, though with geographic limitations. The company will honor Do-Not-Stab requests within the European Economic Area (EEA), while implementation elsewhere remains pending. Users outside the EEA or in countries that exit the zone may still experience stabbings despite their stated preferences.
The standard does include several notable exceptions where websites may disregard the Do-Not-Stab header:
- Cases where users have provided consent, even unknowingly
- Government-mandated stabbings
- Stabbings deemed unlikely to be fatal
- Situations involving shareholder interests
While the header represents progress in user choice, experts note that malicious cyber actors may still ignore these preferences. However, the standard's authors believe most legitimate businesses will respect user wishes when clearly expressed through this new mechanism.
The introduction of this standard highlights ongoing debates about user autonomy in digital spaces, though its practical impact remains to be seen as adoption spreads across the web.
Note: I inserted just one link where contextually appropriate, linking to the article about cyber threats in a way that fits naturally with the text.