Home Online Advertising Safari Enables Full-On Third-Party Cookie Blocking By Default (Aka, No More Workarounds Ever)
Online Advertising

Safari Enables Full-On Third-Party Cookie Blocking By Default (Aka, No More Workarounds Ever)

By

SHARE:

Are you sitting down? Because there’s some news that actually isn’t related to the coronavirus.

After years of moving in this direction, Apple said Tuesday that all third-party cookies for cross-site tracking will be blocked by default in Safari 13.1 for iOS and macOS.

You’d be forgiven for scratching your head and saying, “Wait a sec, weren’t third-party cookies already blocked in Safari as part of Intelligent Tracking Prevention?”

The answer is yes. What’s new is Safari going full nuclear on workarounds. It’s been a cat-and-mouse game between trackers and Safari for a while, but ITP means business.

In a blog post, WebKit security engineer John Wilander put it like so: “This is a significant improvement for privacy since it removes any sense of exceptions or [that] ‘a little bit of cross-site tracking is allowed.’”

WebKit will share its experiences with unmitigated third-party cookie blocking with privacy groups within W3C “to help other browsers take the leap,” Wilander wrote.

Chrome said earlier this year that it’s planning to deprecate third-party cookies in its browser beginning in 2022.

Here are a few of the exploits WebKit is cracking down on:

  • Ironically, the way in which a tracking prevention method is carried out can in some cases be manipulated to track a person across sites. Full third-party cookie blocking ensures that there is no ITP state that can be detected through cookie-blocking behavior. Basically, trackers won’t be able to use what is being blocked as a signal for tracking.
  • Login fingerprinting, which allows sites to see where a user was previously logged in, will no longer be possible. Aka, no leakage of a user’s login state across sites.
  • Last year, Apple announced that all client-side cookies would expire after seven days. (Later, this became 24 hours.) As expected, third-party scripts reacted by simply moving to other means of first-party storage, such as LocalStorage, which uses JavaScript to store information on the client side and never expires. Well, now there will be a seven-day cap on all script-writable storage too.

Click here to read the full blog post.

Tagged in:

Must Read

Comic: Domino Effect
Data Privacy

Does The New Federal Data Privacy Bill Have A Snowball’s Chance Of Passing?

Congress is taking another swing at a federal privacy framework. Wonder what the odds are on Kalshi.

AI

ChatGPT Ads Have Begun Showing Up For Logged-Out Users

Good news for advertisers, many of whom have found it difficult to meet minimum spend budgets on ChatGPT: Logged-out users can now see ads.

Commerce Roundup

Amazon Faces An Easy Boycott But An Existential Question

The Amazon advertising boycott last week wasn’t really about Amazon’s ad platform as much as it was a dispute over evolving seller economics, which raises a fundamental question: Can you even build a brand on Amazon anymore?

Privacy! Commerce! Connected TV! Read all about it. Subscribe to AdExchanger Newsletters
Gaming

Unity And Index Exchange Unite Behind Gaming Data In Non-Gaming Channels

For the first time, Unity’s gaming audiences will be available for ad targeting outside the Unity platform, with Index Exchange using Unity’s data to curate web and CTV inventory.

AI

Brand-Trained Agents Can Give Marketers A Fuller View Of Their Customers

Agentic commerce company Envive builds on-site agents for brands like footwear company Clove, painting a clearer picture of what their customers are looking for.

CTV

Don’t Worry About Netflix – It’s Doing Fine Without Warner Bros. Discovery

Paramount might have outlasted and outbid Netflix in the competition to acquire Warner Bros. Discovery, but Netflix is not overly fussed about the loss.

Popular

  1. AI

    ChatGPT Ads Have Begun Showing Up For Logged-Out Users

    Good news for advertisers, many of whom have found it difficult to meet minimum spend budgets on ChatGPT: Logged-out users can now see ads.

  2. Commerce Roundup

    Amazon Faces An Easy Boycott But An Existential Question

    The Amazon advertising boycott last week wasn’t really about Amazon’s ad platform as much as it was a dispute over evolving seller economics, which raises a fundamental question: Can you even build a brand on Amazon anymore?

  3. Gaming

    Unity And Index Exchange Unite Behind Gaming Data In Non-Gaming Channels

    For the first time, Unity’s gaming audiences will be available for ad targeting outside the Unity platform, with Index Exchange using Unity’s data to curate web and CTV inventory.

  4. Inside the Stack

    Why Seedtag Is Betting on Neuro-Contextual Advertising

    Seedtag CEO Brian Gleason joins Inside the Stack to explain contextual’s resurgence and how neuro-contextual AI shifts the focus from keywords to emotion and environment.

  5. Comic: Conversion!
    Marketers

    NBCU’s Peacock Is Officially On Its Way To Profitability

    NBCUniversal successfully called its shot with the nickname “Legendary February.”