Apple's Beats brand in April unveiled the Powerbeats Pro, a redesigned wire-free version of its popular fitness-oriented Powerbeats earbuds.
iOS 12.2 and Safari 12.1 for macOS Include Updated Intelligent Tracking Prevention Feature
Safari in the iOS 12.2 beta and Safari 12.1 for macOS High Sierra and Mojave includes an updated version of Intelligent Tracking Prevention, according to details shared on Apple's WebKit blog.
ITP 2.1, as Apple is calling it, caps client-side cookie storage to seven days. After this time period, cookies expire. As outlined by Apple, this offers improvements in privacy, security, and performance. From Apple's WebKit blog:
- Cross-site trackers have started using first-party sites' own cookie jars for the purpose of persistent tracking. The first-party storage space is especially troublesome for privacy since all tracker scripts in the first-party context can read and write each other's data. Say social.example writes a user tracking ID as a news.example first-party cookie. Now analytics.example, adnetwork.example, and video.example can leverage or cross pollinate that user tracking ID through their scripts on news.example.The cookie storage limits will not log users out as long as websites are using the appropriate authentication cookies because it only affects cookies created through document.cookie.
- Cookies available in document.cookie can be stolen by speculative execution attacks on memory. Therefore, they should not carry sensitive information such as credentials.
- Cookies available in document.cookie can be stolen by cross-site scripting attacks. Again, therefore, they should not carry sensitive information such as credentials.
- The proliferation of cookies slows down page and resource loads since cookies are added to every applicable HTTP request. Additionally, many cookies have high entropy values which means they cannot be compressed efficiently. We come across sites with kilobytes of cookies sent in every resource request.
- There is a size limit on outgoing cookie headers for performance reasons, and websites risk hitting this limit when cross-site trackers add first-party cookies. We've investigated reports of news site subscribers getting spuriously logged out, and found that trackers were adding so many cookies that the news site's legitimate login cookie got pushed out.
ITP 2.1 also allows for just a single set of cookies per site rather than multiples, and third party tools with cross-site tracking capabilities need to use the Storage Access API to get cookie access.
Apple says this change simplifies cookie behavior for developers, lowers the memory footprint of Safari, and makes Intelligent Tracking Prevention compatible with more platforms.
A verified partitioned cache for cutting down on cache abuse for tracking purposes is also included, and as we covered earlier this month, support for Do Not Track has been disabled.
Apple says that it is removing Do Not Track because most websites never paid any attention to it since it was opt-in and could be ignored.
The DNT project recently ended without the publication of a standard, in part "because there has not been sufficient deployment of these extensions (as defined) to justify further advancement." Given the lack of deployment of DNT and Safari's on by default privacy protections such as ITP, Safari removed support for DNT so that users are not presented with a misleading and ineffective privacy control that, if anything, only offered additional browser fingerprinting entropy.Additional details on the Intelligent Tracking Prevention updates being introduced are available via Apple's full WebKit blog post.
Tag: Safari
[ 42 comments ]
Top Rated Comments
(View all)
18 weeks ago
Eh, I never liked that tracking prevention stuff. Just be smart, and advertisers won't learn a thing about you.
18 weeks ago
Can you elaborate? Your screenshot doesn't seem to illustrate much other than you being interested in Singles sites.
Some ideas for people:
[LIST=1]
* Use Private Browsing for sites you don't want tracking you. This loads the site into a blank slate, with no existing cookies in place.
* Use /etc/hosts to block common ad-serving hosts. These load from 127.0.0.1 (localhost) and the requests will never leave your computer.
18 weeks ago
Can you elaborate? Your screenshot doesn't seem to illustrate much other than you being interested in Singles sites.
Some ideas for people:
[LIST=1]
* Use Private Browsing for sites you don't want tracking you. This loads the site into a blank slate, with no existing cookies in place.
* Use /etc/hosts to block common ad-serving hosts. These load from 127.0.0.1 (localhost) and the requests will never leave your computer.
18 weeks ago
Eh, I never liked that tracking prevention stuff. Just be smart, and advertisers won't be able to learn a thing about you.
This made my evening. Thank you.
Can you elaborate? Your screenshot doesn't seem to illustrate much other than you being interested in Singles sites.
Some ideas for people:
[LIST=1]
* Use Private Browsing for sites you don't want tracking you. This loads the site into a blank slate, with no existing cookies in place.
* Use /etc/hosts to block common ad-serving hosts. These load from 127.0.0.1 (localhost) and the requests will never leave your computer.
I know of two things that can break the speed of sound: the Concorde, and that joke flying over your head.
18 weeks ago
I completely wipe cookies every time I think of it - say, every 1-3 days.
It's never been a negative.
Cookies aren't for users, they're for advertisers and people who want to track you.
Passwords aren't an issue with password fill.
It's never been a negative.
Cookies aren't for users, they're for advertisers and people who want to track you.
Passwords aren't an issue with password fill.
18 weeks ago
If only we could have a functional cookie manager...
cough coughCookie ('https://sweetpproductions.com')
18 weeks ago
I use Cookie 5, an App Store app that gives me fine control over cookies, databases, tracking cookies, Flash cookies and Silverlight data. It can be set to delete at intervals or when the browser is closed. Works with Safari and Firefox (and more, I assume)
18 weeks ago
If only we could have a functional cookie manager...
I agree, for example, Firefox allows you to delete cookies when closing the application.
18 weeks ago
Eh, I never liked that tracking prevention stuff. Just be smart, and advertisers won't be able to learn a thing about you.
[ Read All Comments ]
In a new support document, Apple has indicated that the first public beta release of macOS Catalina does not support switching between multiple iTunes libraries. This also applies to the first two...
Twelve South today announced its latest HiRise accessory, called the "HiRise Wireless," and it's available to purchase now on Twelve South's website. The new accessory is a...
OWC, a well-known maker of storage solutions for Macs and PCs, today debuted what it says is "the fastest USB-C SSD ever."
The new OWC Envoy Pro EX with USB-C is a bus-powered NVMe...
Apple accessory maker Mophie today debuted a three-in-one portable battery pack, wall charger, and wireless charging pad.
The new Powerstation Hub is equipped with a 6,100mAh battery, one 5W...
Encrypted messaging platform Telegram has pushed out an update that introduces a number of new location-based features, including the ability to Add People Nearby.
Users of the chat app can open...
Apple has released the first public beta of macOS Catalina, the next major version of its Mac operating system due to launch in the fall. The availability of the public beta means Mac users don't...
Apple has released the first public beta of iOS 13 for compatible iPhone and iPod touch models, enabling users who aren't signed up for the Apple Developer Program to test the software update...
iOS 13 may come with built-in support for Hong Kong's Octopus contactless payment system, if a few lines of code discovered on Apple's servers are any indication.
Tech blog Ata Distance...
