Feature request: Provide low-entropy UACH on updateURL fetches #1240
Comments
|
We’ve been investigating this ask for the low-entropy UACH headers on interest group update requests. Today these requests do not have these UACH headers. Chrome does not attach them, and the browser is not specified to include them: the requests are issued with a null client which means the UACH are not attached due to lack of permissions policies. The reason for the null client is that these requests are not meant to be associated with a particular web page. As the explainer says: “An update request only contains information from the single site where the user was added to the interest group” We want to prevent data from other sites from being included in these requests. The low-entropy UACH headers are controlled by four different permission policies. Were we to associate these requests with the page conducting the auction that triggered the post-auction interest group updates, then we would be exposing four bits of data from that page in the update request, represented by the presence or lack of UACH headers due to the permission policies of that page. The page where the user was added to the interest group is likely long since unloaded and hence cannot easily be associated with the update request. This is all to say that I don’t foresee an easy way to add low-entropy UACH headers to interest group update requests. |
Thanks Paul. Appreciate the explanation. |
PA
updateURLfetches' utility could be improved with the inclusion of low entropy UACH. Opening this issue per suggestion in the 31 July WICG discussion. While buyers can work around by encoding the info into theupdateURL, this adds complexity and unnecessarily consumes IG on-device space.Chrome Canary net-log trace from 31-July:
The text was updated successfully, but these errors were encountered: