- From: Charlie Harrison via GitHub <sysbot+gh@w3.org>
- Date: Wed, 27 Apr 2022 21:37:24 +0000
- To: public-patcg@w3.org
> Making match keys easy to swap out on a single device (possibly across apps) makes this attack worse, but that seems fixable with OS-level support. Best case I can see is that this proposal would achieve (in the worst case) is site x user x device privacy. Actually, I am not sure this is easy. I think we would need to make sure that two "different entities" (e.g. facebook.com and facebook2.com) don't try to measure the same events with two different match keys (user123-A and user123-B), to double up their counts. In other words I think match key consistency needs to be 1:1 with websites. -- GitHub Notification of comment by csharrison Please view or discuss this issue at https://github.com/patcg/private-measurement/issues/9#issuecomment-1111508082 using your GitHub account -- Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Wednesday, 27 April 2022 21:37:26 UTC