https://github.com/WICG/turtledove/pull/1342
https://github.com/WICG/turtledove/pull/1343
The web platform portion of the specification: https://github.com/WICG/turtledove/pull/1340
The interface to the Trusted Key-Value Server endpoint: https://privacysandbox.github.io/draft-ietf-protected-audience-key-value-service/draft-ietf-protected-audience-key-value-services.html
During Protected Audience (PA) API ad selection auctions, buyers and sellers are able to fetch real-time signals from servers. As a temporary mechanism, the buyer and seller can fetch these signals from any server, including one they operate themselves (a "Bring Your Own Server" model); this change does not remove this support. To improve user privacy and enable new functionality, in the future versions of PA, the request will only be sent to a trusted key-value-type server. The server is verified by external parties to ensure it’s running an approved binary built from the open source key-value server code and is running in a trusted execution environment (TEE), and only then is allowed access to decryption keys. This proposal adds support to Chrome to communicate with these trusted key-value servers using an encrypted protocol ensuring that only the appropriately trusted servers can decrypt and respond, thus ensuring the protocol and server maintain desired privacy characteristics.
For Protected Audience: https://github.com/w3ctag/design-reviews/issues/723
Completed for PA, resolved unsatisfied.
Optional new functionality that does not break existing use.
Gecko & WebKit: For PA in general - Negative from Mozilla. No signal from Webkit.
Edge: Edge is running an Origin Trial of the Ad Selection API which shares a Web API and services protocol with PA.
Web developers: At least four companies have expressed interest in another feature (also here) that is blocked on Trusted Key-Value Server Support in the browser.
HTTPS requests to Trusted Key-Value Servers are visible in the Chrome DevTools Network pane. Response values are visible by setting breakpoints in PA bidding scripts.
It will be supported on all platforms that support PA, so all but WebView.
We have started WPTs and plan to finish them soon.
None
ProtectedAudienceTrustedKVSupport
False
Shipping on desktop and Android in M132.
None
https://chromestatus.com/feature/5072384013631488?gate=5125481377300480
This intent message was generated by Chrome Platform Status.
SpecificationThe web platform portion of the specification: https://github.com/WICG/turtledove/pull/1340
The main relevant section of the Protected Audience explainer is 3.1.2 Trusted Signals Server in TEEThe JavaScript API changes are minimal, just the extra trustedBiddingSignalsCoordinator and trustedScoringSignalsCoordinator fields. The bulk of the browser changes are explained in the explainer for the new protocol used to communicate with the Trusted Key-Value Server.Similarly, the main relevant sections of the web spec are the sections that assemble the trusted bidding and trusted scoring sections, while the bulk of the new spec is the new IETF spec for the new protocol used to communicate with the Trusted Key-Value Server.
--
You received this message because you are subscribed to the Google Groups "blink-dev" group.
To unsubscribe from this group and stop receiving emails from it, send an email to blink-dev+...@chromium.org.
To view this discussion visit https://groups.google.com/a/chromium.org/d/msgid/blink-dev/CABQTWrk0XPEYYdiRKLgN88cQ67TnzeJW7a5WVNdZCcnRp28u5A%40mail.gmail.com.