-
Notifications
You must be signed in to change notification settings - Fork 116
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Feature Request: “Intelligent Tracking Protection”-alike #119
Comments
Hi @ron-wolf , thank you for opening the issue. I dont think Brave will pursue a ITP like approach, mainly because Brave's protections are currently strictly stronger than ITP in nearly all cases (and that we're building other approaches for the small remaining differences). ITP broadly does three things (there are some other aspects too, but they're mostly about escape valves for the below)
If its of interest, brave/brave-browser#8514 covers the approach we're pursuing to remove the few remaining 3p storage exceptions. But, the main takeaway is that adopting ITP would reduce Brave's privacy protections, and result in re-enabling some forms of tracking, which we're of course not interested in doing :). Hope that helps! |
@pes10k Thanks for the patient and thorough explanation! Most sites have worked just fine with Brave, so I wrongly assumed Brave’s implementation was more conservative than, say, Safari’s. I don’t know too much about the implementation, but let me know if there’s anything I could help with regarding brave/brave-browser#8514! |
@ron-wolf thanks much for the kind words and the offer! It'll probably be 2-3 months before we have a useful version of brave/brave-browser#8514 in nightly (its a very large, complex change from how Chromium handles things), but if you're interested then, we'd love to have more users testing it out and sharing their experiences with us! |
TL;DR
My idea
I am an ex-Safari user who switched to Brave once Apple neutered extension support (which is purported to be coming back using WebExtensions). I’ve been reading up in detail about how Apple implements Intelligent Tracking Protection in WebKit, the open-source counterpart to Safari (akin to Chromium for Google Chrome). ITP uses statistical methods to classify third-party domains as trackers, and gradually reduce their access to the user‘s browser the longer the user has gone without visiting their domain directly.
For those interested, I found a 2017 Apple blog post about the technology that does a pretty good job of explaining the feature, and why it works so well. The following snippet is of particular interest:
On the technical side, I found a page of documentation, and the feature’s location within the mirrored source tree. (Here is the Trac viewer for the original repository.)
To the best of my knowledge, that portion of WebKit’s source is licensed under a BSD-like license, while this repository is licensed under the MPL, as per Rust rules I presume. I’m not as familiar with cross-licensing as I’d like, but perhaps it would be possible to learn from Apple’s technology and incorporate something like Intelligent Tracking Protection in Brave? In the meantime, I am doubling up on Brave’s tracking protection using Privacy Badger.
The text was updated successfully, but these errors were encountered: