Abstract
Third-party cookies have been a privacy concern since cookies were first developed in the mid 1990s, but more strict cookie policies were only introduced by Internet browser vendors in the early 2010s. More recently, due to regulatory changes, browser vendors have started to completely block third-party cookies, with both Firefox and Safari already compliant.
The Topics API is being proposed by Google as an additional and less intrusive source of information for interest-based advertising (IBA), following the upcoming deprecation of third-party cookies. Initial results published by Google estimate the probability of a correct re-identification of a random individual would be below 3% while still supporting IBA.
In this paper, we analyze the re-identification risk for individual Internet users introduced by the Topics API from the perspective of Quantitative Information Flow (QIF), an information- and decision-theoretic framework. Our model allows a theoretical analysis of both privacy and utility aspects of the API and their trade-off, and we show that the Topics API does have better privacy than third-party cookies. We leave the utility analyses for future work.
Original language | English |
---|---|
Title of host publication | WPES '23 |
Subtitle of host publication | proceedings of the 22nd Workshop on Privacy in the Electronic Society |
Place of Publication | New York |
Publisher | Association for Computing Machinery |
Pages | 123-127 |
Number of pages | 5 |
ISBN (Electronic) | 9798400702358 |
DOIs | |
Publication status | Published - 2023 |
Event | 22nd Workshop on Privacy in the Electronic Society, WPES 2023 - Copenhagen, Denmark Duration: 26 Nov 2023 → 26 Nov 2023 |
Conference
Conference | 22nd Workshop on Privacy in the Electronic Society, WPES 2023 |
---|---|
Country/Territory | Denmark |
City | Copenhagen |
Period | 26/11/23 → 26/11/23 |
Keywords
- topics api
- third-party cookies
- quantitative information flow
- interest-based advertising
- privacy