Technology for privacy: protecting against online tracking and - - PowerPoint PPT Presentation

▶

Sep 03, 2022 45 likes •195 views

Technology for privacy: protecting against online tracking and profiling Rob van Eijk PhD Candidate, Leiden University CPDP 2018, Petite Halle 24-01-2018 | 08h45-10h00 Leiden University Elaw - Centre for Law and Digital Technologies, Leiden

SLIDE 1

Electronic copy available at: https://ssrn.com/abstract=3106582

Technology for privacy: protecting against

nline tracking and profiling

Rob van Eijk PhD Candidate, Leiden University CPDP 2018, Petite Halle 24-01-2018 | 08h45-10h00 Leiden University

Elaw - Centre for Law and Digital Technologies, Leiden Law School Dual PhD Centre, Faculty of Governance and Global Affairs

SLIDE 2

Electronic copy available at: https://ssrn.com/abstract=3106582

Acknowledgements

I would like to thank prof.dr. H. Jaap van den Herik,

dr. Mark Dechesne,
mr. Udo Oelen

for their support and inspiration.

SLIDE 3

Overview

Three key questions

What are the main techniques for modern tracking in
nline and mobile environments?

→ Real-time bidding (RTB) systems (6 slides)

How does cross-app and cross-device tracking work?

→ Cross-device tracking: KLM Use case (1 slide)

How can privacy by design support against tracking?

→ Data leakage reduction (5 slides)

SLIDE 4

Theoretical view of RTB systems

SLIDE 5

Demand Side Platform (DSP)

A DSP enables it’s network partners to bid for ad slots.
Media buyers and advertisers bid on criteria such as,

– geolocation, – gender, – browsing history.

A DSP specializes in running an advertising campaign
n different websites while targeted at the intended

audience at the right time.

SLIDE 6

Sell Side Platform (SSP)

A SSP enables publishers to auction their ad slots

to all media buyers and advertisers.

A SSP specializes in matching advertisers with the

SSP’s publisher network.

SLIDE 7

Data Management Platform (DMP)

A DMP enables DSPs and SSPs to zoom in on

their audience.

A DMP specializes in customer data.
For a DSP having access to customer data means

that it puts them in a better position to (re)target the right user on the right website.

For a SSP having access to customer data means

that it puts them in a better position to personalize the content on their website offered to users.

SLIDE 8

Empirical view of RTB systems (1)

Top 50 edges per EU country

SLIDE 9

Empirical view of RTB systems (2)

SLIDE 10

Cross-device tracking: KLM use case

Source: https://www.thinkwithgoogle.com/_qs/images/9qiwi6Ktm4_uKM8jHHxMnzdeKVA=/17842/width-1000/klm_chartv32.jpg

SLIDE 11

Data leakage reduction

Browsers offer already some control over the integrity of the device. Four examples:

Blocking third-party HTTP cookies
Content Security Policies
Algorithmic tracking protection (Apple’s ITP, plug-ins)
Do Not Track (DNT) Consent API & Notifications API

SLIDE 12

Blocking third-party HTTP cookies

Entropy versus counting third-party cookies

Asghari, Van Eijk, Englehardt, Narayanan, and Winter (2016) Spearman’s correlation coefficient = 0.95758713547808916, Pvalue = 0.0

SLIDE 13

Content Security Policies

Source: https://www.axe.com/de/inspiration/haar/so-foehnst-du-dir-die-haare.html

SLIDE 14

Publisher Publisher

Browser Browser w e b p a g e c

t a i n s l i n k t

d

e t w

k a s k c

s e n t s display page get consent prompt user grant/refuse consent

Algorithmic tracking protection

Toubiana and van Eijk (2017)

Technology for privacy: protecting against

Rob van Eijk PhD Candidate, Leiden University CPDP 2018, Petite Halle 24-01-2018 | 08h45-10h00 Leiden University

Elaw - Centre for Law and Digital Technologies, Leiden Law School Dual PhD Centre, Faculty of Governance and Global Affairs

Acknowledgements

I would like to thank prof.dr. H. Jaap van den Herik,

for their support and inspiration.

Overview

Three key questions

→ Real-time bidding (RTB) systems (6 slides)

→ Cross-device tracking: KLM Use case (1 slide)

→ Data leakage reduction (5 slides)

Theoretical view of RTB systems

Demand Side Platform (DSP)

– geolocation, – gender, – browsing history.

audience at the right time.

Sell Side Platform (SSP)

to all media buyers and advertisers.

SSP’s publisher network.

Data Management Platform (DMP)

their audience.

that it puts them in a better position to (re)target the right user on the right website.

that it puts them in a better position to personalize the content on their website offered to users.

Empirical view of RTB systems (1)

Top 50 edges per EU country

Empirical view of RTB systems (2)

Cross-device tracking: KLM use case

Data leakage reduction

Browsers offer already some control over the integrity of the device. Four examples:

Blocking third-party HTTP cookies

Entropy versus counting third-party cookies

Asghari, Van Eijk, Englehardt, Narayanan, and Winter (2016) Spearman’s correlation coefficient = 0.95758713547808916, Pvalue = 0.0

Content Security Policies

Source: https://www.axe.com/de/inspiration/haar/so-foehnst-du-dir-die-haare.html

Publisher Publisher

Browser Browser w e b p a g e c

t a i n s l i n k t

d

e t w

k a s k c

s e n t s display page get consent prompt user grant/refuse consent

Algorithmic tracking protection

Toubiana and van Eijk (2017)

Publisher Publisher

Browser Browser w e b p a g e c

t a i n s l i n k t

d

e t w

k a s k c

s e n t s display page get consent prompt user grant/refuse consent

DNT Consent API & Notifications API

Toubiana and van Eijk (2017)