Comment: Apple’s delayed privacy protection won’t make much difference – the ad industry is a step ahead - 9to5Mac | Canada News Media
Connect with us

Tech

Comment: Apple’s delayed privacy protection won’t make much difference – the ad industry is a step ahead – 9to5Mac

Published

 on


Apple came under considerable flack yesterday after announcing that it was delaying protections against one of the ad industry’s ways to track us. 9to5Mac readers and Twitter users were not impressed.

But ultimately Apple’s latest privacy step won’t make much difference: there’s already a new way for advertisers to track us, and there’s little Apple can do about it: device fingerprinting. Read on to find out how to test whether your devices can be uniquely identified …

Why advertisers, websites and apps want to track us

There are two reasons advertisers, websites, and apps want to track us.

First, they want to show us personalized ads. Ads which relate to our own interests and activities are more likely to be effective. If you visit a lot of tech websites, for example, then advertisers have a higher chance of catching your interest if they show you ads for gadgets rather than random stuff.

So if you visit ten tech websites, and they each drop a cookie on your device to say that you’ve visited that site, ad networks can check for the presence of those cookies, see that you like tech, and then serve gadget ads. The same thing can be done in apps – using the apps you use to determine your interests.

Things can get much more specific than that. If you visit a website about Apple Watch straps, then the cookie can be used to ensure that, later, on an unrelated site, you are shown an ad for those straps.

Second, advertisers want to know which ads are effective. Relatively few people click on ads, so that’s not a good way to measure effectiveness. Instead, if you have been shown an ad for, say, an iPhone case, the advertiser may drop a cookie on your device. If you later visit the website for that case, the site can check for the presence of that cookie and conclude that the ad was effective in bringing you there.

The cookie will also identify which website you were on or which app you were using when you saw the ad. The case maker will then be able to conclude that it’s worth spending money on that ad on that site or in that app.

Note that the advertiser has no idea who you are. It doesn’t know your name, address or any personally identifiable data. It can simply know that person X has a lot of tech cookies on their device, person Y visited an Apple Watch strap website and person Z has seen an ad for a particular iPhone case.

Apple’s three-stage approach to limiting tracking

Apple initially recognized that advertisers wanted to perform tracking (including things like Apple Search Ads), but wanted to ensure user privacy was protected. The first step it took was to come up with something known as IDFA: IDentifier For Advertisers. This is a unique identifier for each device, randomly assigned by Apple. Advertisers are allowed to use this for tracking, because Apple knows that there is no way to use it to identify a named individual.

Stage 2 was to let users go into Settings > Privacy > Tracking and set a toggle allowing or denying permission for tracking. That was no threat to advertisers, because only someone who strongly objected to tracking was ever going to bother.

Stage 3 is the change which upset Facebook, and which Apple has now agreed to delay. With this change, iOS 14 will force apps to show a popup that asks your permission to be tracked. If you say no, the app doesn’t get to use your IDFA.

Advertisers were already concerned about that, because many people think ‘tracking’ means that they can be personally identified. A typical non-tech person is also going to imagine that ‘tracking’ means something much scarier than it really does, so most people will say no.

The ad industry’s next step: device fingerprinting

Advertisers started with cookies; Apple and others let us block them.

Apple then offered advertisers IDFA, but the delayed change in iOS 14 means that most users will deny access to that.

But as much as Facebook may be making a fuss about this, the ad industry already has another way to identify devices: device fingerprinting.

Whenever you visit a website, your browser hands over a bunch of data intended to ensure that the site displays correctly on your device. A website needs to display itself very differently on an iMac and an iPhone, for example.

As time has gone on, and websites have become more sophisticated, the amount of data your browser hands over has grown. Here are some examples of the data which your browser sends to a website:

  • Browser name and version (eg . Safari 13.1.1/605.1.15)
  • Device operating system and version (eg. macOS 10.15.5)
  • Timezone
  • Fonts installed
  • Device vendor (eg. Apple)
  • Browser plugins installed
  • Screen resolution
  • Screen color depth
  • Audio formats supported
  • Video formats supported
  • Media devices attached (for input and output, eg. webcams)
  • Keyboard layout
  • Preferred content language
  • How your device renders a particular image on the webpage

Note that this isn’t a comprehensive list, it’s just examples. When a website analyses all of the data available to it, things get very specific, very fast.

The aim of device fingerprinting is to try to identify each unique device, assigning to it a device fingerprint. This can then be used to track you in exactly the same way as IDFA.

Want to see if your device can be uniquely identified? Go to this website or this one and run the test. If you’re worried about doing this, bear in mind that any website can do the same thing – the only difference with these sites is they are showing you your data. But if it makes you feel more comfortable, amiunique.org makes its source code available, and Panopticlick is run by the EFF.

I tested both my Mac and my iPhone.

That my Mac was uniquely identified didn’t surprise me. I have a 49-inch monitor, and there can’t be too many people with a screen resolution of 5120×1440. Add that together with some of the non-standard fonts I have installed and that may already be unique. If not, a few more pieces of data would do it.

But my iPhone 11 Pro was also unique among the more than 2.5 million devices they have tested. This stuff works.

Apple’s delayed change will largely render IDFA useless for advertisers, as so many people will deny permission. But the ad industry will simply switch to device fingerprinting and carry on as usual.

Apple could fight this too, by allowing you to spoof some of the info just as you can for MAC addresses when connecting to a public WiFi hotspot. But a lot of the info can’t be spoofed, else it will stop web pages rendering properly.

The bottom line is that Apple’s delayed implementation of its IDFA popups is only really going to have one effect: it will give advertisers more time to switch to device fingerprinting. The tracking battle isn’t ending anytime soon.

FTC: We use income earning auto affiliate links. More.

Check out 9to5Mac on YouTube for more Apple news:

[embedded content]

Let’s block ads! (Why?)



Source link

Continue Reading

Health

Here is how to prepare your online accounts for when you die

Published

 on

 

LONDON (AP) — Most people have accumulated a pile of data — selfies, emails, videos and more — on their social media and digital accounts over their lifetimes. What happens to it when we die?

It’s wise to draft a will spelling out who inherits your physical assets after you’re gone, but don’t forget to take care of your digital estate too. Friends and family might treasure files and posts you’ve left behind, but they could get lost in digital purgatory after you pass away unless you take some simple steps.

Here’s how you can prepare your digital life for your survivors:

Apple

The iPhone maker lets you nominate a “ legacy contact ” who can access your Apple account’s data after you die. The company says it’s a secure way to give trusted people access to photos, files and messages. To set it up you’ll need an Apple device with a fairly recent operating system — iPhones and iPads need iOS or iPadOS 15.2 and MacBooks needs macOS Monterey 12.1.

For iPhones, go to settings, tap Sign-in & Security and then Legacy Contact. You can name one or more people, and they don’t need an Apple ID or device.

You’ll have to share an access key with your contact. It can be a digital version sent electronically, or you can print a copy or save it as a screenshot or PDF.

Take note that there are some types of files you won’t be able to pass on — including digital rights-protected music, movies and passwords stored in Apple’s password manager. Legacy contacts can only access a deceased user’s account for three years before Apple deletes the account.

Google

Google takes a different approach with its Inactive Account Manager, which allows you to share your data with someone if it notices that you’ve stopped using your account.

When setting it up, you need to decide how long Google should wait — from three to 18 months — before considering your account inactive. Once that time is up, Google can notify up to 10 people.

You can write a message informing them you’ve stopped using the account, and, optionally, include a link to download your data. You can choose what types of data they can access — including emails, photos, calendar entries and YouTube videos.

There’s also an option to automatically delete your account after three months of inactivity, so your contacts will have to download any data before that deadline.

Facebook and Instagram

Some social media platforms can preserve accounts for people who have died so that friends and family can honor their memories.

When users of Facebook or Instagram die, parent company Meta says it can memorialize the account if it gets a “valid request” from a friend or family member. Requests can be submitted through an online form.

The social media company strongly recommends Facebook users add a legacy contact to look after their memorial accounts. Legacy contacts can do things like respond to new friend requests and update pinned posts, but they can’t read private messages or remove or alter previous posts. You can only choose one person, who also has to have a Facebook account.

You can also ask Facebook or Instagram to delete a deceased user’s account if you’re a close family member or an executor. You’ll need to send in documents like a death certificate.

TikTok

The video-sharing platform says that if a user has died, people can submit a request to memorialize the account through the settings menu. Go to the Report a Problem section, then Account and profile, then Manage account, where you can report a deceased user.

Once an account has been memorialized, it will be labeled “Remembering.” No one will be able to log into the account, which prevents anyone from editing the profile or using the account to post new content or send messages.

X

It’s not possible to nominate a legacy contact on Elon Musk’s social media site. But family members or an authorized person can submit a request to deactivate a deceased user’s account.

Passwords

Besides the major online services, you’ll probably have dozens if not hundreds of other digital accounts that your survivors might need to access. You could just write all your login credentials down in a notebook and put it somewhere safe. But making a physical copy presents its own vulnerabilities. What if you lose track of it? What if someone finds it?

Instead, consider a password manager that has an emergency access feature. Password managers are digital vaults that you can use to store all your credentials. Some, like Keeper,Bitwarden and NordPass, allow users to nominate one or more trusted contacts who can access their keys in case of an emergency such as a death.

But there are a few catches: Those contacts also need to use the same password manager and you might have to pay for the service.

___

Is there a tech challenge you need help figuring out? Write to us at onetechtip@ap.org with your questions.

Source link

Continue Reading

Tech

Google’s partnership with AI startup Anthropic faces a UK competition investigation

Published

 on

 

LONDON (AP) — Britain’s competition watchdog said Thursday it’s opening a formal investigation into Google’s partnership with artificial intelligence startup Anthropic.

The Competition and Markets Authority said it has “sufficient information” to launch an initial probe after it sought input earlier this year on whether the deal would stifle competition.

The CMA has until Dec. 19 to decide whether to approve the deal or escalate its investigation.

“Google is committed to building the most open and innovative AI ecosystem in the world,” the company said. “Anthropic is free to use multiple cloud providers and does, and we don’t demand exclusive tech rights.”

San Francisco-based Anthropic was founded in 2021 by siblings Dario and Daniela Amodei, who previously worked at ChatGPT maker OpenAI. The company has focused on increasing the safety and reliability of AI models. Google reportedly agreed last year to make a multibillion-dollar investment in Anthropic, which has a popular chatbot named Claude.

Anthropic said it’s cooperating with the regulator and will provide “the complete picture about Google’s investment and our commercial collaboration.”

“We are an independent company and none of our strategic partnerships or investor relationships diminish the independence of our corporate governance or our freedom to partner with others,” it said in a statement.

The U.K. regulator has been scrutinizing a raft of AI deals as investment money floods into the industry to capitalize on the artificial intelligence boom. Last month it cleared Anthropic’s $4 billion deal with Amazon and it has also signed off on Microsoft’s deals with two other AI startups, Inflection and Mistral.

The Canadian Press. All rights reserved.

Source link

Continue Reading

News

Kuwait bans ‘Call of Duty: Black Ops 6’ video game, likely over it featuring Saddam Hussein in 1990s

Published

 on

 

DUBAI, United Arab Emirates (AP) — The tiny Mideast nation of Kuwait has banned the release of the video game “Call of Duty: Black Ops 6,” which features the late Iraqi dictator Saddam Hussein and is set in part in the 1990s Gulf War.

Kuwait has not publicly acknowledged banning the game, which is a tentpole product for the Microsoft-owned developer Activision and is set to be released on Friday worldwide. However, it comes as Kuwait still wrestles with the aftermath of the invasion and as video game makers more broadly deal with addressing historical and cultural issues in their work.

The video game, a first-person shooter, follows CIA operators fighting at times in the United States and also in the Middle East. Game-play trailers for the game show burning oilfields, a painful reminder for Kuwaitis who saw Iraqis set fire to the fields, causing vast ecological and economic damage. Iraqi troops damaged or set fire to over 700 wells.

There also are images of Saddam and Iraq’s old three-star flag in the footage released by developers ahead of the game’s launch. The game’s multiplayer section, a popular feature of the series, includes what appears to be a desert shootout in Kuwait called Scud after the Soviet missiles Saddam fired in the war. Another is called Babylon, after the ancient city in Iraq.

Activision acknowledged in a statement that the game “has not been approved for release in Kuwait,” but did not elaborate.

“All pre-orders in Kuwait will be cancelled and refunded to the original point of purchase,” the company said. “We remain hopeful that local authorities will reconsider, and allow players in Kuwait to enjoy this all-new experience in the Black Ops series.”

Kuwait’s Media Ministry did not respond to requests for comment from The Associated Press over the decision.

“Call of Duty,” which first began in 2003 as a first-person shooter set in World War II, has expanded into an empire worth billions of dollars now owned by Microsoft. But it also has been controversial as its gameplay entered the realm of geopolitics. China and Russia both banned chapters in the franchise. In 2009, an entry in the gaming franchise allowed players to take part in a militant attack at a Russian airport, killing civilians.

But there have been other games recently that won praise for their handling of the Mideast. Ubisoft’s “Assassin’s Creed: Mirage” published last year won praise for its portrayal of Baghdad during the Islamic Golden Age in the 9th century.

The Canadian Press. All rights reserved.

Source link

Continue Reading

Trending

Exit mobile version