Apple's Beats brand in April unveiled the Powerbeats Pro, a redesigned wire-free version of its popular fitness-oriented Powerbeats earbuds.
Apple to Limit Accelerometer and Gyroscope Access in Safari on iOS 12.2 for Privacy Reasons
Last month, Apple released iOS 12.2 in beta with several new features, including the Apple News app in Canada, a redesigned TV remote in Control Center, support for adding HomeKit-enabled TVs in the Home app, and more.
The upcoming software update also introduces a new Motion & Orientation Access toggle under Settings > Safari > Privacy & Security. Toggled off by default, this new setting must be turned on in order for websites to display features that rely on motion data from the gyroscope and accelerometer in the iPhone, iPad, and iPod touch.
To test this, we loaded the What Web Can Do Today website on an iPhone running the first beta of iOS 12.2. With the Motion & Orientation Access setting toggled on, the page shows real-time accelerometer and gyroscope data from the iPhone. With the setting toggled off, no motion data is shown.
Another example is Apple's motion-based iPhone experience site. This page normally allows you to tilt your actual iPhone to swivel the iPhone XS Max on the screen with tech specs. With Motion & Orientation Access toggled off, however, only a static image of the iPhone XS Max is shown without tech specs.
This privacy-focused change could be in response to a WIRED report last year that claimed thousands of websites have unmitigated access to motion, orientation, proximity, and light sensor data on mobile devices. Software engineer Felix Krause also filed a radar and notified Apple's security team about this matter in 2017.
As noted by Digiday, the setting could have implications for AR/VR advertising:
It's quite possible Apple could tweak how this feature works in time for the public release of iOS 12.2. Perhaps the setting will be toggled on by default in a subsequent beta, for example, or Safari could prompt users for permission to access motion data when necessary as it does with location data.
The upcoming software update also introduces a new Motion & Orientation Access toggle under Settings > Safari > Privacy & Security. Toggled off by default, this new setting must be turned on in order for websites to display features that rely on motion data from the gyroscope and accelerometer in the iPhone, iPad, and iPod touch.
To test this, we loaded the What Web Can Do Today website on an iPhone running the first beta of iOS 12.2. With the Motion & Orientation Access setting toggled on, the page shows real-time accelerometer and gyroscope data from the iPhone. With the setting toggled off, no motion data is shown.
Another example is Apple's motion-based iPhone experience site. This page normally allows you to tilt your actual iPhone to swivel the iPhone XS Max on the screen with tech specs. With Motion & Orientation Access toggled off, however, only a static image of the iPhone XS Max is shown without tech specs.
This privacy-focused change could be in response to a WIRED report last year that claimed thousands of websites have unmitigated access to motion, orientation, proximity, and light sensor data on mobile devices. Software engineer Felix Krause also filed a radar and notified Apple's security team about this matter in 2017.
As noted by Digiday, the setting could have implications for AR/VR advertising:
For example, Samsung's "Samsung Within" web-based interactive experience, developed by R/GA to promote the hardware brand's legacy and its Galaxy Note 9 phone, uses the accelerometer to let people explore the night sky.These AR/VR experiences may have to rely on fallback versions that people can navigate with swipe gestures instead, but this largely defeats the purpose of motion-based, interactive campaigns.
"It's definitely going to break things," said Kai Tier, executive technology director at R/GA.
It's quite possible Apple could tweak how this feature works in time for the public release of iOS 12.2. Perhaps the setting will be toggled on by default in a subsequent beta, for example, or Safari could prompt users for permission to access motion data when necessary as it does with location data.
Related Roundup: iOS 12
Tag: Safari
[ 32 comments ]
Top Rated Comments
(View all)
7 months ago
Not sure how much this would preserve privacy, but at the same time I can't imagine accelerometer data is very largely used in mobile web dev in the first place.
Sounds more just like security theatre being put on by Apple, but if anyone out there knows something I don't, by all means feel free to enlighten me.
According to the WIRED report: ”the information could fuel various types of attacks, like using ambient light data to make inferences about a user's browsing, or using motion sensor data as a sort of keylogger to deduce things like PIN numbers”
So this seems like it could be a potential threat to privacy and the security of your personal information. Albeit a very small one.
7 months ago
One can hope that a pop-up appears when a website requires gyroscope access. Without one, and the setting off by default, many consumers would be at loss since most wouldn’t know how to turn it on.
7 months ago
This article seems to be misleading. It doesn't seem to me that Apple is limiting access; it seems to just be making that feature "opt in" rather than "opt out".
7 months ago
Not sure how much this would preserve privacy, but at the same time I can't imagine accelerometer data is very largely used in mobile web dev in the first place.
Sounds more just like security theatre being put on by Apple, but if anyone out there knows something I don't, by all means feel free to enlighten me.
I think there's some potential for collected accelerometer/gyroscope data to be exploited with respect to creating motion/location profiles of a phone user. It depends on the accuracy and drift of the sensors, time references, signal processing techniques employed, required accuracy, etc.
I wouldn't be shocked if a very clever individual/company could create something interesting of value (ie, sellable processed user information) from collected raw sensor data.
I'm glad Apple is thinking ahead with respect to the possibilities and privacy implications.
7 months ago
Not sure how much this would preserve privacy, but at the same time I can't imagine accelerometer data is very largely used in mobile web dev in the first place.
Sounds more just like security theatre being put on by Apple, but if anyone out there knows something I don't, by all means feel free to enlighten me.
It’s legitimate, there are algorithms to figure out your keystrokes based on gyro and accelerometer data. MIT demo’d it a few years ago IIRC.
Update: done is 2011
https://arstechnica.com/gadgets/2011/10/researchers-can-keylog-your-pc-using-your-iphones-accelerometer/
7 months ago
Interesting. The limitations to interactive ad or experiential campaigns would be frustrating for many companies that have things in the works. But this would provide another potential opportunity for Apple, which they really should look into: an internally-hosted and -approved ad platform. Apple should offer a way to have interactive ads that rely on iOS device information to the company for review and eventual hosting once approved. This way, they keep control of where that data goes (I think many trust Apple more than any other company to keep the data secure and only used for the purpose of displaying the experience), and Apple can take a reasonable fee for the privacy and availability of such a service that it hosts, adding another service-based revenue stream. It's a good way to capitalize on its user base without "selling" its customer information... Instead, they're just getting paid to be a watchdog over your private device metrics to let you experience more types of media online worry-free.
They had that. It was called iAd and it was a major flop.
7 months ago
Is knowing which direction my phone is facing really an invasion of my privacy?
Yes. You can identify people by measuring their walking gate. Google did it a few years ago
https://www.analyticsvidhya.com/blog/2018/05/this-machine-learning-algorithm-identifies-you-by-your-walking-style/
7 months ago
Glad this is something that is off by default. Since most people wouldn't even be aware of it and leave it on. Not due to preference. Just because they don't know any better.
I know it sounds like nothing. Accessing motion and orientation data. If someone can use it. Someone will figure out a way to abuse it.
I know it sounds like nothing. Accessing motion and orientation data. If someone can use it. Someone will figure out a way to abuse it.
7 months ago
Wait - you can access ambient light data on a website? I was doing some ludicrously complicated calculations from GPS data to determine if the sun was up or not at your location to determine whether to be in "day mode" or "night mode"...
[ Read All Comments ]
Earlier this summer, Mophie announced and launched a new line of Juice Pack Air cases for the iPhone XS and XS Max, which promise to add extra hours of battery life to your iPhone while providing...
After offering a look at its upcoming streaming service Disney+, and announcing a bundle with ESPN+ and Hulu, Disney today confirmed the devices that will support Disney+ at launch. For Apple device...
Spotify is launching a new content filter feature for its Family Plan to give parents and guardians better control over what their children listen to.
The owner of the family plan master...
More details have emerged about the unreleased portable Bluetooth speaker from Sonos, thanks to new images shared by WinFuture (via The Verge).
The German site has published several marketing...
Version 17 of Ulysses was released today, bringing some much-requested features to the popular Mac and iOS app for writers.
First up, the developers have brought keyword management to the iOS...
Apple today sent out emails to customers about its latest Apple Pay promo, which will see the company donating $10 to the National Park Foundation for Apple Pay purchases made from the Apple...
We're just a few weeks away from the unveiling of this year's iPhone lineup as well as the official release of iOS 13 and Apple's other new operating system versions, and we're...
For this week's giveaway, we've teamed up with RAVPower to offer MacRumors readers a chance to win a 61W USB-C Power Adapter and a USB-C to Lightning cable, which can be used to fast charge...
