Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Privacy and Tracking Protection in Firefox

Francois Marier
January 30, 2016
Technology
0
180

Privacy and Tracking Protection in Firefox

Surveillance is a growing concern in Europe, and Mozilla believes that privacy and security should be treated as fundamental and not optional in the browsing experience. That's why Firefox has introduced new features for tracking protection and private browsing. Do not track is not only a way to navigate the web, it might also become part of a new privacy law in the EU. We will discuss how this has been implemented in the newest version of Firefox, next steps, and why it's important to have transparency and control in our online experiences.

https://fosdem.org/2016/schedule/event/mozilla_privacy_tracking_protection_firefox/

Francois Marier

January 30, 2016
Tweet

More Decks by Francois Marier

See All by Francois Marier
Security and Privacy settings for Firefox Power Users
fmarier
0
230
Getting Browsers to Improve the Security of Your Webapp
fmarier
0
230
Hardening Firefox for Privacy and Security
fmarier
0
840
Security and Privacy on the Web in 2016
fmarier
0
170
Security and Privacy on the Web in 2015
fmarier
0
140
Security and Privacy on the Web in 2015
fmarier
0
150
Integrity protection for third-party JavaScript
fmarier
1
640
URL to HTML
fmarier
1
170
Integrity protection for third-party JavaScript
fmarier
2
520

Other Decks in Technology

See All in Technology
エンジニアのためのドキュメントライティング / Docs for Developers and Paragraph Writing
nttcom
1
280
Linuxのブロックデバイス
sat
PRO
4
1.6k
ジョブキューシステムFireworqのアーキテクチャ設計と運用時のベストプラクティス
tarao
1
780
開発チーム内でのQAの役割
iseki
0
100
Jotaiで作ったフォームをApollo_Clientで投げたらいい感じだった件.pdf
asazutaiga
1
210
リアルとデジタルをつなぐ、Web3社会実装への取り組み
sbtechnight
PRO
0
390
位置情報ビッグデータの可視化技術の紹介と実社会での活用
sbtechnight
PRO
1
380
BIMIとメールセキュリティ
sbtechnight
PRO
0
410
Kubernetes + containerd で cgroup v2 に移行したら "failed to create fsnotify watcher" エラーが発生する原因と対策
superbrothers
0
370
作って理解するバックドア
ad5jp
0
210
生成AIで文化を創造する(ChatGPT作成タイトル)
sbtechnight
PRO
0
390
Pain-free APIs with Smithy4s
kubukoz
0
100

Featured

See All Featured
How To Stay Up To Date on Web Technology
chriscoyier
779
250k
Code Review Best Practice
trishagee
50
12k
A better future with KSS
kneath
230
16k
GraphQLの誤解/rethinking-graphql
sonatard
39
8k
Build The Right Thing And Hit Your Dates
maggiecrowley
22
1.5k
Stop Working from a Prison Cell
hatefulcrawdad
264
18k
Statistics for Hackers
jakevdp
785
210k
Java REST API Framework Comparison - PWX 2021
mraible
PRO
14
5.6k
Clear Off the Table
cherdarchuk
79
290k
The Invisible Customer
myddelton
113
12k
Typedesign – Prime Four
hannesfritz
34
1.6k
What's in a price? How to price your products and services
michaelherold
233
9.8k

Transcript

  1. Privacy & Tracking Protection
    in Firefox
    Raegan MacDonald
    @shmaeganm
    François Marier
    @fmarier

    View Slide

  2. the state of online surveillance
    how tracking works in practice
    how widespread is it?
    what can we do about it?
    questions & discussion
    overview

    View Slide

  3. the state of
    online surveillance

    View Slide

  4. the public-private
    surveillance partnership
    Bruce Schneier
    Relationship specific to
    US context
    Role of companies inside the
    surveillance eco-system

    View Slide

  5. privacyinternational.org/sii
    the business of surveillance

    View Slide

  6. trading data for “free” services
    surveillance as the business
    model of the internet

    View Slide

  7. View Slide

  8. data brokers

    View Slide

  9. online advertisting industry

    View Slide

  10. the public-private
    surveillance partnership
     Governments & corporations
    have similar goals
     Snowden disclosures:
    PRISM, MUSCULAR
     What companies know, governments can & will know
     Any reform must take into account this relationship

    View Slide

  11. View Slide

  12. how does it work
    in practice?

    View Slide

  13. View Slide

  14. View Slide

  15. View Slide

  16. customerID=112

    View Slide

  17. View Slide

  18. third-party
    cookies

    View Slide

  19. View Slide

  20. View Slide

  21. suckerID=319

    View Slide

  22. View Slide

  23. View Slide

  24. View Slide

  25. View Slide

  26. suckerID=319

    View Slide

  27. View Slide

  28. top 1 million
    67% use Google Analytics

    View Slide

  29. View Slide

  30. View Slide

  31. user agent
    timezone
    language
    screen size
    browser plugins
    system fonts

    View Slide

  32. fingerprinting

    View Slide

  33. panopticlick.eff.org

    View Slide

  34. how widespread
    is it?

    View Slide

  35. View Slide

  36. View Slide

  37. View Slide

  38. View Slide

  39. View Slide

  40. View Slide

  41. View Slide

  42. View Slide

  43. View Slide

  44. View Slide

  45. 209 different third-parties
    26 on more than one site

    View Slide

  46. what can we
    do about it?

    View Slide

  47. TRACKERS

    View Slide

  48. political means

    View Slide

  49. the EU's new privacy law
    ● Article 19, General Data Protection Regulation
    ● 2b. In the context of the use of information
    society services, and notwithstanding Directive
    2002/58/EC, the data subject may exercise his
    or her right to object by automated means
    using technical specifications.
    ● Could imply Do Not Track specifications

    View Slide

  50. technical means

    View Slide

  51. block
    network
    requests

    View Slide

  52. can't set any cookies
    can't fingerprint you
    can't see you in their logs

    View Slide

  53. View Slide

  54. View Slide

  55. View Slide

  56. View Slide

  57. View Slide

  58. View Slide

  59. converted and
    served by Mozilla
    to Firefox users
    feeding.cloud.geek.nz/posts/tweaking-cookies-for-privacy-in-firefox

    View Slide

  60. 1st-party
    v.
    3rd-party

    View Slide

  61. google.com
    v.
    google-analytics.com

    View Slide

  62. View Slide

  63. View Slide

  64. View Slide

  65. View Slide

  66. avoid having a
    hard dependency
    on Google Analytics
    developer.mozilla.org/Firefox/Privacy/Tracking_Protection

    View Slide

  67. what about when you're
    browsing outside of
    private browsing?

    View Slide

  68. View Slide

  69. about:config
    privacy.trackingprotection.enabled

    View Slide

  70. feeding.cloud.geek.nz/posts/tweaking-cookies-for-privacy-in-firefox

    View Slide

  71. View Slide

  72. want to help?
    report missing trackers
    reach out to broken sites

    View Slide

  73. © 2016 Raegan MacDonald
    François Marier
    This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 License.
    Questions?
    @shmaeganm @fmarier

    View Slide

  74. photo credits:
    bruce schneier:
    https://commons.wikimedia.org/wiki/File:Bruce_Schneier_at_CoPS2013-IMG_9174.jpg
    say no to strangers: https://www.flickr.com/photos/_chrisuk/6500365853/
    cookie on tray: https://secure.flickr.com/photos/jamisonjudd/4810986199/
    cookie: https://www.flickr.com/photos/amagill/34754258/
    happy cookie: https://www.flickr.com/photos/1080p/3080936724/
    squirrel cookie: https://www.flickr.com/photos/tomitapio/3049686879/
    copper cable: https://www.flickr.com/photos/theilr/8942861511/

    View Slide