| 1 | = Privacy Features in WebKit |
| 2 | ''by John Wilander'' |
| 3 | |
| 4 | - WebKit Tracking Prevention Policy |
| 5 | - http://webkit.org/privay-prevention-policy |
| 6 | - Privacy Defaults Timeline |
| 7 | - 2003 Third-parties without pre-existing cookies cannot set cookies |
| 8 | - 2013 Caches and HTML5 storage partitioned per website |
| 9 | - 2017 Intelligent Tracking Prevention deletes tracking cookies |
| 10 | - 2018 The Storage Access API asks for user permission |
| 11 | - 2019 Private Click Measurement (proposed standard) |
| 12 | - How to Enable ITP |
| 13 | - “Resource Load Statistics” |
| 14 | - Classification there for all ports |
| 15 | - Cocoa-specific: |
| 16 | - Public Suffix List |
| 17 | - Cookie blocking (HTTP and JS) |
| 18 | - HTTP referrer downgrade |
| 19 | - HSTS restrictions |
| 20 | - The Storage Access API |
| 21 | - Prompt: Do you want to allow “third party video.example” to use cookies and website date while browsing news.example |
| 22 | - What is Ad Click Attribution? |
| 23 | - You buy something, where did the purchase come from, an ad? |
| 24 | - Search for something click and ad |
| 25 | - If you add the item to shopping cart |
| 26 | - Cookie is set and read by search provider |
| 27 | - ITP prevents this, no matching |
| 28 | - [https://webkit.org/blog/8943/privacy-preserving-ad-click-attribution-for-the-web/ Private Click Measurement] |
| 29 | - 1. Store Ad Clicks internally |
| 30 | - 2. Match conversions against stored clicks |
| 31 | - 3. Send out attribution data |
| 32 | - Provides aggregate measurement of ad clicks |
| 33 | - Next Up |
| 34 | - isLoggedIn API |
| 35 | - Differentiate between logged in and casual visits |
| 36 | - Proposed at W3C TPAC |
| 37 | |