A point to take from the article is that users should focus on actual technical capabilities, not "privacy policies" or similar wishful-thinking gesturing.
Whether you click on the "Accept" or "Refuse" button of a webpage's Javascript-powered cookie banner has 0 technical incidence on whether you can be tracked or not. It's like going into a store and telling the clerk "please don't look at me, and when I leave please forget I ever came here".
>It's like going into a store and telling the clerk "please don't look at me, and when I leave please forget I ever came here".
I feel these cute analogies make the mistake of equating a human seeing and remembering you (maybe even writing your name down in a notebook) with a machine doing the same thing.
There's significant qualitative differences, mainly that the machine has perfect memory and can effortlessly share and collect your information with other machines.
You realize that "wishful-thinking gesturing" is what it looks like when privacy advocates lose the political game, right? The answer is not to ignore politics, the answer is to get better at politics so we don't lose next time.
Agreed. Cookie permissions should be handled on the browser side, similarly to how e.g. webcam permissions are handled. Would allow for a "don't ask me again" response that doesn't itself rely on cookies.
I'd love this, cookie banners are a plague and the ones that get through my adblocker get manually blacklisted on sight. I get the intention, but the lawmakers couldn't have got the wrong end of the stick harder if they were actively trying to in my opinion. It's like the words "alarm fatigue" never appeared in their analysis of the situation.
> It's like going into a store and telling the clerk "please don't look at me, and when I leave please forget I ever came here".
Or saying "Please don't record me, I don't give my consent". But you are already in there archives. Facial recognise so they know what you like to buy.
Doesn’t that proof that the publishing industry has the integrity to let their newsrooms do what they consider important stories, without interference from the business side?
Wow. That ask is very deceptive because cookies can't even do half of the things they are blaming on the cookie. Cookies can do this:
* Store information on a device.
Cookies cannot:
* Personalize ads (they can store identifying information that can be used to personalize an ad, but something else has to actually ask your browser for the data)
* Actively scan device characteristics
* "Access information" Cookies don't do that. Code (Javascript in the browser usually or something on a web server) that might use data from a cookie does.
I always find these articles interesting, not because the ideas are novel, but because it highlights that people are generally unaware of the possibility.
A great talk I once heard focused on the idea that given there are (let's use a nice round number) ~4 billion humans on earth, your identity only has 32 bits of entropy. Every piece of information about you can be put in terms of how many bits of your identity it reveals.
Gender? ~1 bit. Zip code? 15+ bits. Your phones serial number would be 30+ bits (assuming some wiggle room for resale or multiple users).
The USA is special in that there is no national law against the commercial exploitation of personal information. There is some state level legislation, but that can't help very much for this sort of thing.
None are exactly the same, but each includes many similar constraints to the GDPR, notably for the GP's point: no processing of personal data without consent. Together with the EU, those easily cover more than 50% of the global population.
I wouldn't be surprised if the US made an attempt at something similar soon. If not it feels like another area (see also: socialized healthcare, gun control, the metric system) where US norms could end up out of step with the rest of the developed world.
They just released a legislature plan - already in temporary effect - that kinda allows private companies to spy on our non-end-to-end encrypted communication to combat child exploitation; this was a rushed vote with coercive elements.
I think every country wants to monitor its citizens and those that have the technology actively do so. It is indeed responsible not to get fooled by marketing when those countries say they don't.
I tell everybody I know to set a monthly reminder to reset the maid in their device. Even if you have tracking of which I also recommend I don't trust it.
If that's the only thing that changes, and it does so on a predictable basis, I don't think it would be even a speed bump to the techniques described in the paper.
So I checked my Ads setting on Android. I have 'opt out of ads personalisation' set to on. So does this mean I am not sharing my maid with anyone via apps install? (I did just reset maid now for the heck of it)
Ads (bottom of the page)
Advertising ID and Personalization
I too have 'opt out of ads personalization' enabled, but the description is: "Instruct apps not to use your advertising ID to build profiles or show you personalized ads."
The effect and meaning SHOULD be: default: give each app a fake value when this is called (configurable to always nil, random, or 'static per app') and also instruct them to ignore the value.
Reset advertising ID is text at the top, the opposite end of the screen from the ID displayed, and it is not obvious this is a 'button' text. That's a dark pattern to me.
Currently? Nothing. [0] (As Android allowed the ID to be used for non-advert purposes).
However, it should soon appear as a 0'd string. (Because, obviously, it was still being used for that purpose).
> Starting in late 2021, when a user opts out of interest-based advertising or ads personalization, the advertising identifier will not be available. You will receive a string of zeros in place of the identifier. [1]
This is actually not true. Regular 'vardcentraler' had no such requirement and far from every ward at the hospitals did either.
Some that did enforce visitor's restrictions (some at Lund University Hospital I had experience with) had no mask mandate but relaxed all restrictions in September.
UMAS in Malmo had multiple wards not mandating any mask wearing (including blood test section and endocrine) but enforced it across the street on the women's clinic.
One of my local Capio placed out some boxes of masks well into the reception area and asked people to use them, but it was by no means mandated.
So what you wrote is really not at all true, and it wasn't at all highly irregular. It was just depending on what wards you were visiting, and as for vardcentraler it was a joke.
Generally speaking, your advertising ID is linked to a bunch of other technical information used to profile you. So when you change advertising ID, the systems in use can generally correlate that, and have a history of IDs that are linked into your profile.
When you change your AID, apps instantly link it to your old AID using several techniques:
1. Nearly every app stores an ID identifying installation of the app on your phone. When the app starts up, it sends this installation ID and your new AID to the server which now has both old and new AID. To prevent this, you must uninstall all apps, change your AID, and then reinstall apps. Deleting app data is insufficient because app install times are unique and easily obtained from app file timestamps. Android apps that have access to "external storage" will send file hashes to the server and identify you instantly.
2. When you sign into an app, it sends your IDs to the server which now has your old and new AID.
3. If you use an app that talks to a physical device, the physical device reports its serial number or unique network address. The app sends this to the server with your new AID. Any app can silently search for such devices on your network and extract their ID numbers. Examples of physical devices: fitness bands, anything BlueTooth, printers, remote-controlled lights, NFC tokens, and find-my-keys tokens.
4. If you use WiFi without a shared proxy (a VPN) then any app or even any website can simply send your (device type, IP address) pair to the ad network for de-anonymizing. No need for IDs at all. The moment you launch any ad-supported app on such a non-proxied Internet connection, the app will link your new AID to your identity. This happens when you connect to Wifi at work or friends' homes. Most VPN software fails open, so apps can get your IP address for a few seconds when the phone restarts and every time the VPN service is down or momentarily interrupted. Working around this takes knowledge and effort.
Once one app company sells your (Old AID, New AID) pair, this data enters the network of data brokers and is available to all.
TLDR: Changing your AID alone does nothing. Mobile privacy requires a fail-closed shared proxy (VPN), no data sharing between apps, and no reachable devices on the WiFi network.
Is MAID implemented in hardware or software? Is there an easy way to give an app a distinct MAID every time it restarts? It seems like maybe you'd have to root your phone to do that?
- Store and/or access information on a device
- Personalised ads and content, ad and content measurement, audience insights and product development
- Use precise geolocation data
- Actively scan device characteristics for identification