Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Chromium版EdgeのTracking Prevention機能 / Tracking Prevention in Chromium-based Microsoft Edge
Search
Shingo Yamazaki
February 19, 2020
Programming
0
1.5k
Chromium版EdgeのTracking Prevention機能 / Tracking Prevention in Chromium-based Microsoft Edge
Shingo Yamazaki
February 19, 2020
Tweet
Share
More Decks by Shingo Yamazaki
See All by Shingo Yamazaki
ログラスCREのこれまでとこれから(2023年)
zakiyama
0
200
カスタマーサポートを立ち上げてからやったこと
zakiyama
0
220
組織一丸となってカスタマーサクセスを実現するための取り組みと悩み
zakiyama
0
1.6k
プロダクトと顧客をつなぐログラスのCREの取り組み
zakiyama
2
4.4k
StorybookのUI Testing Handbookを読んだ
zakiyama
13
4.6k
LWCのローカル開発機能(ベータ)を試す / LWC Local Development
zakiyama
0
400
kintone開発チームのモブプロ事情 / Mob programming in kintone dev team
zakiyama
0
3.3k
Chromaticで手軽にVisual Regression Testを導入する / Visual Regression Testing with Chromatic
zakiyama
2
1.3k
Apex Replay Debuggerを試してみた
zakiyama
0
4.7k
Other Decks in Programming
See All in Programming
GitLab CI/CD で C#/WPFアプリケーションのテストとインストーラーのビルド・デプロイを自動化する
hacarus
0
580
Fast JSX: Don't clone props object #28768
yossydev
1
230
検証も兼ねて個人開発でHonoとかと向き合った話
hanetsuki
1
1.4k
PHPコードの実行モデルを理解する / Understanding-the-PHP-Execution-Model
shin1x1
0
830
Balkan Ruby 2024 — How and why to run SQLite on Rails in production
fractaledmind
0
110
AWS CDKコントリビュートTIPS / aws-cdk-contribution-tips
gotok365
4
600
RaaP
ksss
0
140
SIMD Parallel Programming with the Vector API
josepaumard
0
250
Next.js App Router
quramy
14
2.3k
酒飲んでたらテックリードになった話
spbaya0141
0
190
TypeScriptの型とパフォーマンス (TSKaigi 2024)
ypresto
13
3.9k
TypeScript 関数型スタイルでバックエンド開発のリアル
naoya
49
16k
Featured
See All Featured
Stop Working from a Prison Cell
hatefulcrawdad
266
19k
How to name files
jennybc
65
93k
WebSockets: Embracing the real-time Web
robhawkes
59
7k
Atom: Resistance is Futile
akmur
260
25k
It's Worth the Effort
3n
180
27k
Optimizing for Happiness
mojombo
370
69k
The Cost Of JavaScript in 2023
addyosmani
21
3.9k
Designing Dashboards & Data Visualisations in Web Apps
destraynor
226
51k
Designing for humans not robots
tammielis
247
25k
Creating an realtime collaboration tool: Agile Flush - .NET Oxford
marcduiker
14
1.5k
Building Effective Engineering Teams - LeadDev
addyosmani
33
1.9k
Mobile First: as difficult as doing things right
swwweet
217
8.6k
Transcript
Chromium൛Microsoft Edgeͷ Tracking Preventionػೳ
• Shingo Yamazaki • Cybozu, Inc. About me zaki-yama zaki___yama
• PWA Night vol.13 ʙWebϒϥβ࠷લઢʙ ͱ͍͏ΠϕϯτͰ͓͢Δ༧ఆͩͬͨ༰ͷ Ұ෦Ͱ͢ • Chromium൛MS Edgeʹ͍ͭͯҎલϒϩάʹ
·ͱΊͨ༰ͷ͏ͪɺTracking Preventionʹ ͍ͭͯ·ͱΊͨ͠ͷ ͜ͷεϥΠυʹ͍ͭͯ
Tracking PreventionҎ֎ͷใ ϒϩάΛ͝ࢀর͍ͩ͘͞ ɹɾϩʔϧΞτܭը ɹɾ*&Ϟʔυ ɹɾ$PMMFDUJPOTػೳ ɹFUD https://dackdive.hateblo.jp/entry/2020/02/06/090000
ओͳใݯ 20196݄ͷهࣄ ػೳͷ֓ཁհ 201910݄ͷهࣄ Ξοϓσʔτ༰
Tracking Prevention ͱ ͳʹ͔
ઃఆ > ϓϥΠόγʔͱαʔϏε
• จࣈ௨Γ”τϥοΩϯάࢭػೳ” • τϥοΧʔαΠτ͕ɺϢʔβʔͷࣝผ͓Αͼߦಈͷͨ ΊʹϒϥβʹใΛอଘ͠Α͏ͱ͢ΔͷΛࢭ͢Δػೳ • ଟ͘๚ͨ͠αΠτͦͷͷͰͳ͘ɺͦͷαΠτͰ ಡΈࠐΜͰ͍ΔผυϝΠϯͷϦιʔε • جຊ/όϥϯε/ߴϨϕϧɹͷ3ͭͷϨϕϧ͕ఏڙ͞Ε͓ͯ
ΓɺσϑΥϧτ “όϥϯε” Tracking Prevention
Tracking Prevention͕ߦ͏͜ͱ 3FTUSJDU TUPSBHF BDDFTT #MPDL SFTPVSDF MPBET
τϥοΧʔͱఆ͞ΕͨαΠτ͔ΒಡΈࠐΜͩϦιʔε͕ɺετϨʔδʹ ΞΫηε͢ΔͷΛϒϩοΫ͢Δ 1. Restrict storage access BDPN USBDLFSDPN USBDLFSDPN4FSWFS $PPLJFͷอଘ
MPDBM4UPSBHFͷΞΫηε FUD
τϥοΧʔͱఆ͞ΕͨαΠτͷϦιʔεΛͦͦಡΈࠐ·ͳ͍ (“we may block that load before the request reaches
the network”) 2. Block resource loads BDPN USBDLFSDPN USBDLFSDPN4FSWFS
Tracking Preventionͷྫ
ΞυϨεόʔͷ伴ΞΠίϯ͔Β ֬ೝͰ͖Δ
Tracking Preventionͷ ͘͠Έ
ෳͷ͘͠ΈΛΈ߹Θ࣮ͤͯݱ͍ͯ͠Δ Ͳ͏͍͏͘͠Έʁ $MBTTJpDBUJPO 4JUF FOHBHFNFOU 0SHBOJ[BUJPOT
• ͋ΔυϝΠϯ͕ • τϥοΧʔ͔Ͳ͏͔ • Ͳ͏͍͏ΧςΰϦͷτϥοΧʔ͔ • Λྨ͢Δ͘͠Έ • ެࣜϒϩάʹΑΔͱɺDisconnectࣾͷϦετΛ༻͍ͯ͠ΔΒ͠
͍ 1. Classification
https://blogs.windows.com/msedgedev/2019/12/03/improving-tracking-prevention-microsoft-edge-79/
… https://disconnect.me/trackerprotection#categories-of-trackers
• ϒϩοΫ͢ΔΧςΰϦʔΛ૿ͤ૿͢΄Ͳ҆શʹ ͳΔ͕ɺຊདྷϒϩοΫ͖͢Ͱͳ͍ͷ·Ͱϒϩο Ϋͯ͠αΠτͷಈ͖Λյͯ͠͠·͏ͱ͍͏τϨʔυΦ ϑ • “such as federated login
or embedded social media content.” • →੍ݶΛ؇͢ΔͨΊͷผͷ͘͠Έͱͯ͠23͕͋Δ 1. Classification
• αΠτʹର͢ΔϢʔβʔͷΤϯήʔδϝϯτΛɺϢʔβʔͷߦಈΛ ݩʹείΞϦϯά͢Δ͘͠Έ • ϢʔβʔͷߦಈɿαΠτͷӾཡճɾࡏ࣌ؒɾϝσΟΞͷ࠶ੜ ͳͲ • 0 ʙ 100Ͱߴ͍΄ͲΤϯήʔδϝϯτߴ
• ܭࢉϩʔΧϧʹͷΈอଘ͞ΕΔʢͷͰɺؒͰಉظ͠ͳ ͍ʣ • edge://site-engagement ͔ΒݱࡏͷείΞΛ֬ೝͰ͖Δ 2. Site engagement
edge://site-engagement ͷྫ
• ͋Δ৫͕ෳͷυϝΠϯ͔ΒίϯςϯπΛ৴͍ͯ͠Δ ߹ɺޡఆͯ͠Ұ෦ͷυϝΠϯͷϦιʔεΛϒϩοΫ͠ͳ ͍ͨΊͷ͘͠Έ • ෳͷυϝΠϯΛOrganizationͱ͍͏୯ҐͰ෦Ͱάϧʔϐ ϯά͓ͯ͘͠ • ͍ͣΕ͔ͷυϝΠϯͷSite Engagement͕͖͍͠Ҏ্Ͱ͋
ΕɺυϝΠϯΛ·͙ͨϦιʔεಡΈࠐΈͷ੍ݶΛ؇͢Δ 3. Organizations
͋Δ৫͕ org1.com ͱ org1-cdn.com ͱ͍͏υϝΠϯΛอ༗͍ͯ͠Δ Organizationsͷྫ PSHDPN PSHDEODPN PSHDEODPN4FSWFS $PPLJFͷอଘ
MPDBM4UPSBHFͷΞΫηε FUD PSHDPN4FSWFS
Edge͕ org1.com ͱ org1-cdn.com ΛಉҰOrganizationͱఆ͍ͯͯ͠ɺ ͍ͣΕ͔ͷυϝΠϯʹର͢ΔSite Engagement͕͖͍͠Ҏ্Ͱ͋Ε υϝΠϯΛ·͙ͨϦιʔεಡΈࠐΈͷ੍ݶ؇͞ΕΔ Organizationsͷྫ PSHDPN
PSHDEODPN PSHDEODPN4FSWFS PSHDPN4FSWFS
ಉҰOrganization͡Όͳͯ͘ Site engagement͕͖͍͠Λ͍͑ͯΕ Ұ࣌తʹڐՄ͞ΕΔʁ https://blogs.windows.com/msedgedev/2019/12/03/improving-tracking-prevention-microsoft-edge-79/
3ͭͷϨϕϧʹΑΔҧ͍
https://blogs.windows.com/msedgedev/2019/12/03/improving-tracking-prevention-microsoft-edge-79/
https://blogs.windows.com/msedgedev/2019/12/03/improving-tracking-prevention-microsoft-edge-79/ $MBTTJpDBUJPOͰྨ͞Εͨ τϥοΧʔͷΧςΰϦ
https://blogs.windows.com/msedgedev/2019/12/03/improving-tracking-prevention-microsoft-edge-79/ 4TUPSBHFBDDFTTΛϒϩοΫ #TUPSBHFBDDFTTSFTPVSDFMPBETϒϩοΫ ϒϩοΫͳ͠
https://blogs.windows.com/msedgedev/2019/12/03/improving-tracking-prevention-microsoft-edge-79/ ͨͱ͑ɺ&EHF࣌Ͱ "OBMZUJDTΧςΰϦʔͷτϥοΧʔ ɾʮόϥϯε #BMBODFE ʯͩͱϒϩοΫͳ͠ ɾʮߴϨϕϧ 4USJDU ʯͩͱTUPSBHFBDDFTTͷϒϩοΫ͋Γ
·ͱΊ
• ৽͍͠ChromiumϕʔεͷEdgeʹɺτϥο ΩϯάΛࢭ͢Δػೳ͕උΘ͍ͬͯΔ • ʮϒϥοΫϦετΛͬͯػցతʹϒϩοΫ ͢Δʯ͘͠ΈͱʮϢʔβʔͷૢ࡞ͳͲͷίϯ ςΩετΛՃຯͯ͠దٓ؇͢Δʯ͘͠ΈͰ ͏·͘όϥϯεΛऔΖ͏ͱ͍ͯ͠Δҹ ·ͱΊ