So you have to opt-in for Cookies but not for HTML5 sessionStorage? Browsers vendors, please add an HTTP header for that and IE7 will die :)