- From: Alex Turner <notifications@github.com>
- Date: Fri, 19 May 2023 13:59:51 -0700
- To: w3ctag/design-reviews <design-reviews@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
- Message-ID: <w3ctag/design-reviews/issues/846@github.com>
こんにちは TAG-さん! I'm requesting a TAG review of the Private Aggregation API. This proposal introduces a generic mechanism for measuring aggregate, cross-site data in a privacy preserving manner. This general-purpose API can be called from isolated contexts that have access to cross-site data (such as a [Shared Storage](https://github.com/pythagoraskitty/shared-storage) worklet). Within these contexts, potentially identifying data is encapsulated into "aggregatable reports". To prevent leakage, the cross-site data in these reports is encrypted to ensure it can only be processed by the [aggregation service](https://github.com/WICG/conversion-measurement-api/blob/main/AGGREGATION_SERVICE_TEE.md). During processing, this service adds noise and imposes limits on how many queries can be performed. - Explainer¹ (minimally containing user needs and example code): https://github.com/patcg-individual-drafts/private-aggregation-api - Specification URL: https://patcg-individual-drafts.github.io/private-aggregation-api/ (WIP) - Tests: WPTs not yet available - User research: N/A - Security and Privacy self-review²: https://github.com/patcg-individual-drafts/private-aggregation-api/blob/main/security_and_privacy_questionnaire.md - GitHub repo (if you prefer feedback filed there): https://github.com/patcg-individual-drafts/private-aggregation-api - Primary contacts (and their relationship to the specification): - Alex Turner (@alexmturner), Google - John Delaney (@johnivdel), Google - Organization(s)/project(s) driving the specification: Google Chrome, Privacy Sandbox - Key pieces of existing multi-stakeholder review or discussion of this specification: This API has already been brought for review as part of the [Shared Storage design review](https://github.com/w3ctag/design-reviews/issues/747) and the [Protected Audience (then TURTLEDOVE) design review](https://github.com/w3ctag/design-reviews/issues/723). - External status/issue trackers for this specification (publicly visible, e.g. Chrome Status): https://chromestatus.com/feature/5743412790689792 Further details: - [x] I have reviewed the TAG's [Web Platform Design Principles](https://www.w3.org/TR/design-principles/) - Relevant time constraints or deadlines: - The group where the work on this specification is currently being done: PATCG (Individual Drafts) - The group where standardization of this work is intended to be done (if current group is a community group or other incubation venue): PATWG (assuming eventual creation) - Major unresolved issues with or opposition to this specification: Concerns have been raised in the Shared Storage and Protected Audience design reviews (linked above). Mozilla has a Negative position on Shared Storage ([link](https://github.com/mozilla/standards-positions/issues/646)). - This work is being funded by: Google We'd prefer the TAG provide feedback as (please delete all but the desired option): ☂️ open a single issue in our GitHub repo **for the entire review** -- Reply to this email directly or view it on GitHub: https://github.com/w3ctag/design-reviews/issues/846 You are receiving this because you are subscribed to this thread. Message ID: <w3ctag/design-reviews/issues/846@github.com>
Received on Friday, 19 May 2023 20:59:57 UTC