Appleにおけるプライバシーの全容を把握する

Transcript

1. Appleʹ͓͚Δ ϓϥΠόγʔͷ શ༰Λ೺Ѳ͢Δ iOSDC Japan 2023 day0 @akatsuki174

2. ࣗݾ঺հ

3. • ˏakatsuki174 • גࣜձࣾΏΊΈॴଐ • Android/iOS/FlutterΤϯδχΞ • 1ࣇͷ฼ • 9݄Լ०ʹୈೋࢠग़࢈༧ఆͷɹɹ

   ͨΊɺࣄલऩ࿥ʹͯࢀՃ

4. ࠓ೔ͷ࿩

5. None

6. ͓඼ॻ͖ • ϓϥΠόγʔશମͷ࿩ • ϓϥΠόγʔํ਑ɺ໨తจࣈྻɺ৹ࠪΨΠυϥΠϯɺɹ Human Interface Guidelines etc… •

   ݸʑͷݖݶͷ࿩ • Ґஔ৘ใɺτϥοΩϯάɺࣸਅ/ಈըɺ࿈བྷઌ etc…
7. None

8. • ൣғΛiOSͷຊମʹߜͬͯ·͢ • watchOSͳͲͷଞͷϓϥοτϑΥʔϜɺApp Clips, Widgetɹ ͳͲ͸ର৅֎Ͱ͢ • ࣌ؒͷؔ܎্…͢·Μ… •

   ۩ମతͳ࣮૷ํ๏͸ΘΓͱ͞Βͬͱྲྀ͠·͢ ஫ҙॻ͖

9. Apple͕ߟ͑Δ ϓϥΠόγʔͱ͸

10. • ϓϥΠόγʔ͸جຊతͳਓݖ • Ϣʔβ͔Βͷ৴པΛҡ࣋͢Δ্Ͱॏཁ ϓϥΠόγʔʹର͢Δߟ͑ IUUQTXXXBQQMFDPNKQQSJWBDZ

11. • ຖ೥ϓϥΠόγʔɺηΩϡϦςΟʹؔ͢Δಈը͕ग़͍ͯΔ • WWDC23 5ຊ • WWDC22 13ຊ • WWDC21

    18ຊ • WWDC20 14ຊ etc… ϓϥΠόγʔͱWWDC IUUQTEFWFMPQFSBQQMFDPNWJEFPTQSJWBDZTFDVSJUZ

12. • σʔλͷ࠷খԽ • ΦϯσόΠεॲཧ • ಁ໌ੑͱ؅ཧ • ػີอ࣋ ϓϥΠόγʔอޢ4ݪଇ

13. • ඞཁͳ࣌ʹɺඞཁͳ͚ͩσʔλΛऔಘ͢Δ • ྫɿ • Ґஔ৘ใΛʮҰ౓͚ͩڐՄʯ • Ґஔ৘ใͷػೳΛར༻͢Δ·ͰɺϢʔβʹڐ୚ΛٻΊͳ͍ σʔλͷ࠷খԽ

14. • ػີσʔλΛͰ͖Δ͚ͩϩʔΧϧͰॲཧ͢Δ • ΦϑϥΠϯͰ΋࢖͑Δɺ௨৴͕ͳ͍෼ߴ଎ͳͲͷϝϦοτ΋͋Δ • ྫɿ • SiriͷԻ੠ೝࣝϞσϧ • Create

    MLʹΑΔػցֶश ΦϯσόΠεॲཧ

15. • σʔλͷ࢖༻ํ๏΍ڞ༗ઌΛ໌֬ʹ͢Δ • ࣗ෼ͷҙࢥͰσʔλΛ؅ཧ͢Δ • ྫɿ • Sign in with

    Apple • AppϓϥΠόγʔϨϙʔτʢޙड़ʣ • ϓϥΠόγʔϥϕϧʢޙड़ʣ ಁ໌ੑͱ؅ཧ

16. • ҆શʹอ؅ɺ؅ཧ͢Δ • ྫɿ • ੜମೝূ ػີอ࣋ʢηΩϡϦςΟʣ

17. • ࣍ͷΑ͏ͳ৘ใʹΞΫηε͍ͨ͠ͱ͖͸ɺγεςϜΞϥʔτΛɹ ग़ͯ͠ڐՄΛಘΔඞཁ͕͋Δ • Ґஔ৘ใɺϔϧεέΞɺͦͷଞݸਓΛಛఆͰ͖Δ৘ใ • Χϝϥ΍ϚΠΫͳͲͷσόΠεͷػೳ • BluetoothσόΠεͳͲͷอޢ͞ΕͨϦιʔε •

    σόΠεͷ޿ࠂࣝผࢠ ඞཁͳͱ͖ʹ͸ڐՄΛಘΔ

18. ৄ͘͠͸…

19. ৄ͘͠͸…

20. purpose strings ʢ໨తจࣈྻʣͷॻ͖ํ

21. • ڐՄͷϦΫΤετΛ͢ΔγεςϜΞϥʔτʹදࣔ͞ΕΔจࣈྻ • Info.plistͰઃఆ͢Δ ໨తจࣈྻͱ͸

22. • σʔλͷ༻్͕۩ମతʹઆ໌͞Ε͍ͯΔ͔ • σʔλͷ࢖༻ํ๏ͷྫ͕ࣔ͞Ε͍ͯΔ͔ ໨తจࣈྻͷApp Store৹ࠪ؍఺

23. App Tracking TransparencyΞϥʔτྫ ༻్❌
    ࢖༻ํ๏❌
    τϥοΩϯάΛڐՄ͠ ͳ͍৔߹ͷ͜ͱʹ͍ͭ ͯ΋ݴٴ͍ͯ͠Δ👌 IUUQTEFWFMPQFSBQQMFDPNWJEFPTQMBZUFDIUBMLT ༻్⭕
    

    ࢖༻ํ๏⭕
    

24. ΧϝϥΞϥʔτྫ IUUQTEFWFMPQFSBQQMFDPNWJEFPTQMBZUFDIUBMLT ௕͗͢Δ
    ؆ܿ👌
    

25. ৄ͘͠͸…

26. Ґஔ৘ใ

27. ϦΫΤετྫ ࢖༻தͷΈڐՄ ৗʹڐՄ

28. γεςϜΞϥʔτྫ IUUQTEFWFMPQFSBQQMFDPNWJEFPTQMBZXXED ࢖༻தͷΈڐՄ ৗʹڐՄ

29. • ͬ͘͟Γݴ͏ͱҎԼͷύλʔϯ͕ଘࡏ͢Δ • ະઃఆ • ʮৗʹڐՄʯ • ʮҰ࣌తʹڐՄʯ • ʮ࢖༻தͷΈڐՄʯ

    • ʮڐՄ͠ͳ͍ʯ ڐՄঢ়ଶ

30. ڐՄεςʔλεભҠਤ IUUQTEFWFMPQFSBQQMFDPNWJEFPTQMBZXXED

31. • ࠷খݶͷҐஔ৘ใఏڙͰࡁΉΑ͏ɺʮਖ਼֬ͳҐஔ৘ใʯΛΦϑʹ ͢Δػೳ • ΞϓϦଆͰΦϓτΞ΢τ͢Δ͜ͱ͸Ͱ͖ͳ͍ • iOS 14͔Βొ৔ ਖ਼֬ͳҐஔ৘ใ

32. γεςϜΞϥʔτྫ

33. • UIKit͸CLLocationButtonɺSwiftUI͸LocationButton • ʮඞཁͳͱ͖ʹҰ౓͚ͩҐஔ৘ใͷΞΫηεཁٻΛ͢Δʯ͕؆୯ ʹ࣮ݱͰ͖Δ • ͜ͷϘλϯࣗମʹҐஔ৘ใऔಘػೳ͸ͳ͍ • iOS 15Ҏ্Ͱ࢖༻Մೳ

    LocationButton
34. None

35. γεςϜΞϥʔτྫ

36. ৄ͘͠͸…

37. App Tracking Transparency

38. IUUQTEFWFMPQFSBQQMFDPNKQBQQTUPSFVTFSQSJWBDZBOEEBUBVTF γεςϜΞϥʔτྫ

39. • ࣍ͷ͜ͱΛ͢Δ࣌͸ϢʔβͷڐՄΛٻΊɺ AppTrackingTransparencyϑϨʔϜϫʔΫΛ࢖༻͠ͳ͚Ε͹ͳΒ ͳ͍ • IDFAʹΞΫηε͢Δ • ϢʔβΛτϥοΩϯά͢Δ • iOS

    14.5Ҏ߱͸ରԠඞਢ App Tracking TransparencyʢATTʣͱ͸

40. • Identi fi er for Advertisersʢ޿ࠂࣝผࢠʣ • ݸʑͷσόΠεʹׂΓ౰ͯΒΕΔҰҙͷࣝผࢠ • ޿ࠂओɺ޿ࠂωοτϫʔΫ͸IDFAΛ࢖ͬͯ৘ใΛऩू͠ɺ޿ࠂ

    λʔήςΟϯάͳͲʹ׆༻͢Δ • iOS 14.5͔ΒσϑΥϧτͰऔΕͳ͘ͳͬͨ IDFAͱ͸

41. • ΞϓϦͰऩूͨ͠ಛఆͷΤϯυϢʔβ·ͨ͸σόΠεʹؔ͢Δ σʔλΛ • αʔυύʔςΟͷσʔλͱඥ෇͚Δߦҝ • σʔλϒϩʔΧʔʹ౉͢ߦҝ τϥοΩϯάͱ͸

42. ϦΫΤετྫ

43. ؆ܿʹ·ͱ·ͬͯΔࢿྉ IUUQTTQFBLFSEFDLDPNLPPPPPUBLFNJOJEGBBUUTLBEOFUXPSL

44. IUUQT[FOOEFWTFSJNBBSUJDMFTCEEBB

45. ࣸਅ/ಈը

46. γεςϜΞϥʔτྫ IUUQTEFWFMPQFSBQQMFDPNWJEFPTQMBZXXED ࣸਅΛબ୒ʜ

47. • iOS 14͔ΒPHAuthorizationStatusʹ.limited͕૿͑ͨ • Ϣʔβ͕બ୒ͨࣸ͠ਅ͔͠ΞϓϦ͔ΒΞΫηεͰ͖ͳ͍ঢ়ଶΛ࡞ Δ͜ͱ͕Ͱ͖Δ ʮࣸਅΛબ୒…ʯ

48. ϦΫΤετྫ ಡΈॻ͖ ॻ͖ࠐΈͷΈ ॻ͖ࠐΈͷΈ ಡΈॻ͖

49. • ࣸਅಈըϐοΧʔΛදࣔͰ͖Δ • ௚઀Photo LibraryʹΞΫηε͠ͳ͍ͷͰɺγεςϜΞϥʔτΛɹ ग़͢ඞཁ͕ͳ͍ • ࣸਅಈըΛѻ͏ͳΒ͜ͷํ๏͕ਪ঑͞ΕΔ • iOS

    14͔Β࢖͑Δ PHPickerViewController

50. IUUQTEFWFMPQFSBQQMFDPNWJEFPTQMBZXXED

51. • PHPickerViewController͸SwiftUI͔Β௚઀࢖͑ͳ͔ͬͨ • iOS 16͔Β͸PhotosPickerΛSwiftUI͔Β࢖͑Δ • ΋ͪΖΜγεςϜΞϥʔτඞཁͳ͠ PhotosPicker

52. PhotosPicker࢖༻ྫ

53. ৄ͘͠͸…

54. ࿈བྷઌ

55. γεςϜΞϥʔτྫ

56. ϦΫΤετྫ

57. • ࿈བྷઌͷϐοΧʔΛදࣔͰ͖Δ • ϢʔβͷڐՄΛಘΔඞཁ͸ͳ͍ CNContactPickerViewController

58. None

59. CNContactPickerViewController࢖༻ྫ

60. AppϓϥΠόγʔϨϙʔτ

61. • ΞϓϦ͕ͲΜͳσʔλʹΞΫηε͍ͯ͠Δ͔͕Θ͔ΔϨϙʔτ • ઃఆΞϓϦ͔Β֬ೝͰ͖Δ • σϑΥϧτͰ͸OFF • JSONϑΝΠϧͱͯ͠ΤΫεϙʔτͰ͖Δ • iOS

    15Ҏ߱ʹ౥ࡌ AppϓϥΠόγʔϨϙʔτͱ͸
62. None
63. None

64. Privacy Nutrition Labels ʢϓϥΠόγʔϥϕϧʣ

65. • Ϣʔβ͕ΞϓϦΛμ΢ϯϩʔυ͢ΔલʹΞϓϦͷϓϥΠόγʔɹ ํ਑Λ஌ΔͨΊͷ΋ͷ • αʔυύʔςΟSDKͷ಺༰΋൓өͤ͞Δඞཁ͕͋Δ • App StoreͰݟΔ͜ͱ͕Ͱ͖Δ • WWDC20Ͱൃද͞Εͨ

    • 2021೥ͷय़͔ΒରԠඞਢ ϓϥΠόγʔϥϕϧͱ͸

66. ϓϥΠόγʔϥϕϧྫ IUUQTXXXBQQMFDPNKQQSJWBDZMBCFMT

67. ϓϥΠόγʔϥϕϧྫ IUUQTXXXBQQMFDPNKQQSJWBDZMBCFMT

68. ৄ͘͠͸…

69. ࣮ࡍͷରԠ࿩͸ͪ͜Β IUUQTTQFBLFSEFDLDPNGSPNBUPNJPTEDKBQBO

70. Privacy Manifests

71. • αʔυύʔςΟSDK͕ͲΜͳϓϥΠόγʔ৘ใΛऩू͍ͯ͠Δͷ ͔ΛΞϓϦ։ൃऀ͕஌Δͷ͸େม ϓϥΠόγʔϥϕϧରԠ͸େม

72. • WWDC23Ͱൃද͞Εͨ • SDK͕ऩू͢ΔσʔλλΠϓ΍ɺͲͷΑ͏ʹ࢖༻͞ΕΔ͔ͳͲ͕ એݴ͞Ε͍ͯΔ • αʔυύʔςΟSDK։ൃऀ͸PrivacyInfo.xcprivacyͱ͍͏໊લͷ ϑΝΠϧΛ࡞੒͢Δ Privacy Manifests͕ొ৔

73. • ϓϩδΣΫτ಺ͷશͯͷPrivacy ManifestsΛू໿ͨ͠Ϩϙʔτ • Xcode 15ͰɺApp Store޲͚ϏϧυΛ͢Δ࣌ʹग़ྗͰ͖Δ • ͜ΕΛݩʹϓϥΠόγʔϥϕϧΛهड़͢Δͱྑ͍ Privacy

    report

74. Privacy report IUUQTEFWFMPQFSBQQMFDPNWJEFPTQMBZXXED

75. • ར༻͢Δͷʹʮཧ༝͕ඞཁͳAPIʯ • ࢖༻͢Δ৔߹͸ɺͦͷཧ༝ΛPrivacy Manifests্Ͱ1ͭҎ্બ୒ ͢Δඞཁ͕͋Δ Required Reason API

76. • 2023೥ळҎ߱ɺબ୒͍ͯ͠ͳ͚Ε͹։ൃऀʹ௨஌͕ߦ͘ • 2024೥य़Ҏ߱ɺ৽ن/طଘ྆ํͷΞϓϦʹબ୒͕ٛ຿෇͚ΒΕΔ Required Reason͸

77. • File timestamp APIs • System boot time APIs •

    Disk space APIs • Active keyboard APIs • User defaults APIs Required Reason APIϦετ IUUQTEFWFMPQFSBQQMFDPNEPDVNFOUBUJPOCVOEMFSFTPVSDFT QSJWBDZ@NBOJGFTU@ fi MFTEFTDSJCJOH@VTF@PG@SFRVJSFE@SFBTPO@BQJ

78. ৄ͘͠͸…ʁ IUUQTGPSUFFKQJPTEDKBQBOQSPQPTBMECCFCCEFBECD

79. ৄ͘͠͸…

80. ϓϥΠόγʔΫΠζ

81. • ৹ࠪΨΠυϥΠϯɺHuman Interface GuidelinesΛݩʹΫΠζΛ ࡞੒ • ࣍ͷ֤ઃ໰͸ਖ਼͍͠Ͱ͠ΐ͏͔ʁ ϓϥΠόγʔͷཧղΛਂΊΑ͏

82. τϥοΩϯάͷڐՄΛಘΔͨΊʹγεςϜΞϥʔτΛग़͢৔߹ɺɹ τϥοΩϯάΛڐՄͯ͠΄͍͠ཧ༝Λઆ໌͢Δը໘Λ௚લʹڬΜͰ ΋ྑ͍ ⭕ or ❌ Q1.

83. ௚લʹը໘ΛڬΜͰ΋OKɻ Human Interface GuidelinesͰ͸ʮϓϨΞϥʔτɹ ը໘ɺ΢Πϯυ΢ɺϏϡʔʯʹͯɺͦͷද͕ࣔຬͨ ͢΂͖ཁ݅Λ͍ࣔͯ͠Δɻ ͨͩ͠ɺʮΩϟϯηϧʯͳͲͷճආϘλϯΛදࣔɹ ͢Δͷ͸NGɻ A1. ⭕

    IUUQTEFWFMPQFSBQQMFDPNKQEFTJHOIVNBOJOUFSGBDFHVJEFMJOFTQSJWBDZ1SF BMFSUTDSFFOTXJOEPXTPSWJFXT

84. ࣍ͷέʔε͸τϥοΩϯάʹ֘౰͢Δ ⭕ or ❌ ʮࣗ෼ͷΞϓϦͰऩूͨ͠৘ใͱαʔυύʔςΟͷσʔλͷඥ෇ ͚͕ϢʔβͷσόΠε্ͰͷΈߦΘΕɺϢʔβ΍σόΠεΛಛఆͰ ͖ΔΑ͏ͳํ๏ͰσόΠεͷ֎෦ʹૹ৴͞ΕΔ͜ͱ͕ͳ͍ʯ Q2.

85. σόΠεͷ֎෦ʹૹ৴͞Εͯͳ͍ͷͰτϥοΩϯάʹ֘౰͠ͳ͍ɻ AppTrackingTransparencyϑϨʔϜϫʔΫΛ࢖ͬͯϢʔβ͔ΒڐՄ ΛಘΔඞཁ΋ͳ͍ɻ A2. ❌ IUUQTEFWFMPQFSBQQMFDPNKQBQQTUPSFVTFSQSJWBDZBOEEBUBVTF

86. LocationButtonΛλοϓͯ͠Ґஔ৘ใͷ࢖༻ΛڐՄ͠·ͨ͠ɻ ͜ͷ৔߹ɺ࣍ճىಈ࣌ʹ͸λοϓͯ͠΋࠶౓γεςϜΞϥʔτ͕ɹ ग़ͯ͘Δ͜ͱ͸ͳ͍ ⭕ or ❌ Q3.

87. ࠶౓γεςϜΞϥʔτ͕ग़ͯ͘Δ͜ͱ͸ͳ͍ɻ Ϣʔβ͕ΞϓϦΛΩϧ͢ΔͱڐՄ͸ແޮʹͳΔ͕ɺ࣍ʹ LocationButtonΛλοϓͨ͠ͱ͖ʹ·ͨڐՄ͕༗ޮʹͳΔɻ A3. ⭕ IUUQTEFWFMPQFSBQQMFDPNKQEFTJHOIVNBOJOUFSGBDFHVJEFMJOFT QSJWBDZ-PDBUJPOCVUUPO

88. ݱࡏ஍͕Θ͔Βͳ͍ͱҙຯ͕ͳ͍ΞϓϦͳͷͰɺҐஔ৘ใͷڐ୚ ͕ಘΒΕͳ͔ͬͨΒͦͷػೳ͸࢖͑ͳ͍Α͏ʹͨ͠ ⭕ or ❌ Q4.

89. ڐՄ͕ಘΒΕͳͯ͘΋ػೳΛར༻Ͱ͖ΔΑ͏ͳ୅ସखஈΛߟ͑Δ ΂͖ɻ ྫ͑͹༣ศ൪߸ΛखಈͰೖྗ͓͓ͤͯ͞ΑͦͷҐஔΛ೺Ѳ͢Δɹ ͜ͱͰ୅ସͰ͖ͳ͍͔ͳͲΛݕ౼͢Δɻ A4. ❌ IUUQTEFWFMPQFSBQQMFDPNKQBQQTUPSFSFWJFXHVJEFMJOFTQSJWBDZ

90. ECαʔϏεͷΞϓϦΛ։ൃ͍ͯ͠·͢ɻ஀ੜ೔ΫʔϙϯΛ഑෍ɹ ͍ͨ͠ͷͰɺϢʔβͷ஀ੜ೔ཝΛඞਢ߲໨ʹͨ͠ɻ⭕ or ❌ Q5.

91. ஀ੜ೔ཝΛඞਢʹ͢Δ΂͖Ͱ͸ͳ͍ɻ ECΞϓϦͷओཁػೳ͸γϣοϐϯάͰ͋Γɺ஀ੜ೔͕Θ͔Βͳ͘ ͯ΋ར༻Ͱ͖Δ͸ͣɻΑͬͯɺ೚ҙ߲໨ʹ͢Δͷ͕ྑ͍ɻ A5. ❌ IUUQTEFWFMPQFSBQQMFDPNWJEFPTQMBZUFDIUBMLT

92. ͍͍໨తจࣈྻ͕ࢥ͍ු͔͹ͳ͔ͬͨͷͰɺ໨తจࣈྻΛઃఆɹ ͤͣʹ৹ࠪఏग़ͨ͠ɻ⭕ or ❌ Q6.

93. ໨తจࣈྻ͸ඞͣઃఆ͢Δɻ ઃఆͤͣʹ৹ࠪఏग़ͯ͠ɺϦδΣΫτ͞Εͯ͠·ͬͨྫ΋͋Δɻɹ ͦ΋ͦ΋ઃఆ͠ͳ͍ͱΫϥογϡͯ͠͠·͏৔߹΋͋Δɻ A6. ❌

94. ·ͱΊ

95. • ϓϥΠόγʔΛૄ͔ʹ͠ͳ͍Α͏ʹ͠Α͏ • ϓϥΠόγʔ4ݪଇΛक͍ͬͯΔ͔ࣗ໰͠Α͏ • ద੾ͳ໨తจࣈྻΛઃఆ͠Α͏ ΞϓϦΛ࡞Δͱ͖͸

96. એ఻

97. • ड෇Λ௨ա͙ͯ͢͠ͷ৔ॴʹ͋Γ·͢ • ΫΠζ/Ξϯέʔτʹճ౴͢ΔͱΠΠίτ͕͋ΔͷͰͥͻૣΊʹ ΏΊΈεϙϯαʔϒʔεʹ͓ӽ͍ͩ͘͠͞ • ΤϯδχΞืूͯ͠ΔͷͰڵຯ͋Δํ΋ͥͻͲ͏ͧ ΏΊΈ͸εϙϯαʔϒʔεΛग़ͯ͠·͢

98. ͓ΘΓ