Last time we explored improving the Firefox experience with locally analyzed data and sharing summarized data to web sites. The Prospector team understands the importance of giving users control of what Firefox data is analyzed and what summarized data is shared. Even with Mozilla evaluating sensible defaults that support privacy by design, some users might want to share more or less, and this gets even trickier when data is shared to web sites out of Firefox’s direct control.
We’re looking into ways for how Mozilla can help protect users’ data that gets shared to improve the web experience. We’ve gotten some useful feedback already on how to analyze data in Firefox and what to do with the data, so we would like to hear more from you about this topic of protecting shared data.
One idea we have is related to the “terms of service” that users often need to agree to before using certain web sites. Except here, we want to flip that around and require web sites to agree to terms before accessing the summarized Firefox data.
Using that as a starting point, there are many ideas of what could be included in the terms, such as requiring the web site to only use the shared data for the current request and not associating the data with the user for future requests. This would ensure that web sites are using the freshest Firefox data that might have recently changed, and this gives users control to grant access to more or less data.
To help users make sure web sites comply with the terms, Firefox can provide tools such as targeted cookie blocking or connection blocking. These are useful because without cookies, the web site would have a harder time to associate any shared data with the current user. If this safeguard at the individual user level isn’t enough, Mozilla could reveal the bad acting web site and even put up warnings for all Firefox users similar to the existing built-in phishing and malware protection.
We’ve put together a proof-of-concept add-on, about:trackers, that explores this idea of policies that allow for cookie blocking and connection blocking. While this add-on shares no data to the web sites with accompanying terms, this experiment gives users some settings to adjust and see if their browsing experience would be positively or negatively affected.
Just like the about:profile proof-of-concept, the main purpose is to get people thinking about what could be done in Firefox. So the exact details of the concept policy aren’t too relevant, but at a high level, about:trackers will gradually block sites that would have been able to see you across too many other web sites. It somewhat simulates a term that allows access to a user’s shared data as long as the web site isn’t trying to get other data by using cookies when on other web sites. This also means that web sites that don’t rely on cookies will have their connections working normally.
With the idea of Firefox helping enforce terms for the user on a per-web-site basis, this could help shift more control of data to the users — a better web experience on the user’s terms. So please try out about:trackers without restarting Firefox and think about ideas of how Mozilla can help protect users’ data. Next week,
we’ll put some of these pieces together in yet another experiment. And as always, you can check the source on Github, provide feedback, and submit issues or suggestions!
– Ed Lee on behalf of the Prospector team